General

  • Target

    9e7541e2f966468e9b9a32f05524cf4d761c0f2f64a55422cb3aae069a3af5fb

  • Size

    316KB

  • Sample

    240818-c3erks1apd

  • MD5

    92ddc971bc1afed286016d90a11d6248

  • SHA1

    69aea2e803eb011113a7c2adcd6a649e82fbdf19

  • SHA256

    9e7541e2f966468e9b9a32f05524cf4d761c0f2f64a55422cb3aae069a3af5fb

  • SHA512

    c4fc881bdbf116f64479b645dbfe6e4ea38ded615b42b3bcc934e4352610fe9cda6db44df7449b09cf4d958582f2ffd46681750413ae0135fcb85a38a2fcf988

  • SSDEEP

    1536:S4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:SIdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      9e7541e2f966468e9b9a32f05524cf4d761c0f2f64a55422cb3aae069a3af5fb

    • Size

      316KB

    • MD5

      92ddc971bc1afed286016d90a11d6248

    • SHA1

      69aea2e803eb011113a7c2adcd6a649e82fbdf19

    • SHA256

      9e7541e2f966468e9b9a32f05524cf4d761c0f2f64a55422cb3aae069a3af5fb

    • SHA512

      c4fc881bdbf116f64479b645dbfe6e4ea38ded615b42b3bcc934e4352610fe9cda6db44df7449b09cf4d958582f2ffd46681750413ae0135fcb85a38a2fcf988

    • SSDEEP

      1536:S4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:SIdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks