General

  • Target

    ebdac78d37f572599009112ae837a1c0N.exe

  • Size

    316KB

  • Sample

    240817-r7aezs1dne

  • MD5

    ebdac78d37f572599009112ae837a1c0

  • SHA1

    dd1d947652c0358015c3e6c4501f47181986ba4e

  • SHA256

    cb904d896cd878c88f4baf4c30342ceb54136edfbf449d75e5c530347780a577

  • SHA512

    9944df9264d893d3cb3f7af91bbd2ff272f46be90ca7f02e4769270858b8e5c9c7565039fa5c2bbb8aa4e00a538e9dbc350ab59ac06c4a83e8c51ecd90159131

  • SSDEEP

    1536:I4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:IIdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      ebdac78d37f572599009112ae837a1c0N.exe

    • Size

      316KB

    • MD5

      ebdac78d37f572599009112ae837a1c0

    • SHA1

      dd1d947652c0358015c3e6c4501f47181986ba4e

    • SHA256

      cb904d896cd878c88f4baf4c30342ceb54136edfbf449d75e5c530347780a577

    • SHA512

      9944df9264d893d3cb3f7af91bbd2ff272f46be90ca7f02e4769270858b8e5c9c7565039fa5c2bbb8aa4e00a538e9dbc350ab59ac06c4a83e8c51ecd90159131

    • SSDEEP

      1536:I4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:IIdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks