General

  • Target

    4952f8b6bf6c60bbed39e707dac9187b4617365955fe64b5ab8e5281c711a458

  • Size

    80KB

  • MD5

    be585b59e823d30e74d45f14d1f649a4

  • SHA1

    850542dea63b5bc1fb31947f12edf936684e1c70

  • SHA256

    4952f8b6bf6c60bbed39e707dac9187b4617365955fe64b5ab8e5281c711a458

  • SHA512

    7e918bcd6b25ac1c62d6d80235578b5cf8e30158294ca2e4f11082beea6da92785c8f28472c4e8449b8233cfaec5d1861276774147cc0304d6c29cbf472f693e

  • SSDEEP

    768:4fMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:4fbIvYvZEyFKF6N4yS+AQmZTl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4952f8b6bf6c60bbed39e707dac9187b4617365955fe64b5ab8e5281c711a458
    .exe windows:4 windows x86 arch:x86

    08b67a9663d3a8c9505f3b2561bbdd1c


    Headers

    Imports

    Sections