Overview

overview

10

Static

static

10

b1ee7079fa...0N.exe

windows7-x64

10

b1ee7079fa...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b1ee7079fa2f43a8f6091fd0ccc45540N.exe

  • Size

    248KB

  • MD5

    b1ee7079fa2f43a8f6091fd0ccc45540

  • SHA1

    a13704ec786af328d9ff99802fafce5626e96349

  • SHA256

    c9e91525ba4e362910bb9918d9f41f3a60aad377098268147d7909062321bbaa

  • SHA512

    6b589c944f20efa2a2a4cd48965f7bb9c40b4dbc768c4a802d37bdb688dc36cc855ec78a43e4b80301c86975bef1aa6bf4a398ec06a498ee756042bc8941e927

  • SSDEEP

    1536:34d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZMnOHBRzU:3IdseIO+EZEyFjEOFqTiQmGnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b1ee7079fa2f43a8f6091fd0ccc45540N.exe
    .exe windows:4 windows x86 arch:x86

    b6ad8e85304192a027658f6e227d5e36


    Headers

    Imports

    Sections