General

  • Target

    ba597939b0c8b030f6c784f09b81ad20N.exe

  • Size

    316KB

  • Sample

    240817-bklxhaycmc

  • MD5

    ba597939b0c8b030f6c784f09b81ad20

  • SHA1

    b2e9a95d82dfbf294babd8d880f706d9d7580e44

  • SHA256

    363cc808119ff6d73c47055c2b8a9cc97d8bfc8a873042aae1e3cc6c28e3b9f8

  • SHA512

    677944751d0b509f729ab5da5da29a850e163847903445b35a9ed79f7bd99a42a3f9f2698dbe4b32188d09639354dec6e739721ba2ba64f2ad3108945793ff28

  • SSDEEP

    1536:O4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:OIdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      ba597939b0c8b030f6c784f09b81ad20N.exe

    • Size

      316KB

    • MD5

      ba597939b0c8b030f6c784f09b81ad20

    • SHA1

      b2e9a95d82dfbf294babd8d880f706d9d7580e44

    • SHA256

      363cc808119ff6d73c47055c2b8a9cc97d8bfc8a873042aae1e3cc6c28e3b9f8

    • SHA512

      677944751d0b509f729ab5da5da29a850e163847903445b35a9ed79f7bd99a42a3f9f2698dbe4b32188d09639354dec6e739721ba2ba64f2ad3108945793ff28

    • SSDEEP

      1536:O4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:OIdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks