General

  • Target

    bb265577aa811fe157b09d6472cb5600N.exe

  • Size

    316KB

  • Sample

    240817-mp91nsthqn

  • MD5

    bb265577aa811fe157b09d6472cb5600

  • SHA1

    949d2f286f7a7c20cd4e92c4acf96096b0d53ac0

  • SHA256

    bf54d57f1777b5e5bee6da493cedb69ae56b665f31bb88bdb9628528f52f2395

  • SHA512

    a58667ee5b2540a6a49b796b6876c06fbef0629c9e3521c3386f43e70dcc5a2f5721424d4adad6b1e12aea1a3931e5279e663a48d0bb5a0a6351fb489a194cfc

  • SSDEEP

    1536:T4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:TIdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      bb265577aa811fe157b09d6472cb5600N.exe

    • Size

      316KB

    • MD5

      bb265577aa811fe157b09d6472cb5600

    • SHA1

      949d2f286f7a7c20cd4e92c4acf96096b0d53ac0

    • SHA256

      bf54d57f1777b5e5bee6da493cedb69ae56b665f31bb88bdb9628528f52f2395

    • SHA512

      a58667ee5b2540a6a49b796b6876c06fbef0629c9e3521c3386f43e70dcc5a2f5721424d4adad6b1e12aea1a3931e5279e663a48d0bb5a0a6351fb489a194cfc

    • SSDEEP

      1536:T4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:TIdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks