General

  • Target

    c4315dcd7b48a7da361d30f14d704750N.exe

  • Size

    76KB

  • Sample

    240817-saq7xa1fjh

  • MD5

    c4315dcd7b48a7da361d30f14d704750

  • SHA1

    a007151f142fc49f3a526ac1f1a9ca6e1f6cdaca

  • SHA256

    fbe0f2cc63c26cd8156a121bd080fc2a8adad717315baf9b34b6b9ce0bb66fef

  • SHA512

    aa43ab534bf1cec5c85231aea6a218d5bd72488b9234458bfc214756da364a8e8c8bc5f0d20f85d394b6cfd5f4a43314e96e8034faee03cd25c62921b711ebf6

  • SSDEEP

    1536:pd9dseIOcE93bIvYvZEyF4EEOF6N4XS+AQmZTl/5w11:pdseIOMEZEyFjEOFqaiQm5l/5w11

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      c4315dcd7b48a7da361d30f14d704750N.exe

    • Size

      76KB

    • MD5

      c4315dcd7b48a7da361d30f14d704750

    • SHA1

      a007151f142fc49f3a526ac1f1a9ca6e1f6cdaca

    • SHA256

      fbe0f2cc63c26cd8156a121bd080fc2a8adad717315baf9b34b6b9ce0bb66fef

    • SHA512

      aa43ab534bf1cec5c85231aea6a218d5bd72488b9234458bfc214756da364a8e8c8bc5f0d20f85d394b6cfd5f4a43314e96e8034faee03cd25c62921b711ebf6

    • SSDEEP

      1536:pd9dseIOcE93bIvYvZEyF4EEOF6N4XS+AQmZTl/5w11:pdseIOMEZEyFjEOFqaiQm5l/5w11

    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks