General

  • Target

    f3327a85844a5806782da40c4df8b2c0N.exe

  • Size

    80KB

  • Sample

    240818-f7vv5syand

  • MD5

    f3327a85844a5806782da40c4df8b2c0

  • SHA1

    03a54a14dad390b0443fa1141b2b9d861d1beb14

  • SHA256

    1a0d17f5c56f15fd79ce82e307cdea1a67eed9ade0eb32e2b632ae107bd9f6ae

  • SHA512

    75b8d6a40805ece98301ede687fc9ac44449f89b1101b5585f9187a2477bf05baf478512945169641c656fe50b6917046a1677685d6671d2315f99b5debc61f8

  • SSDEEP

    768:AfMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:AfbIvYvZEyFKF6N4yS+AQmZTl/5

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      f3327a85844a5806782da40c4df8b2c0N.exe

    • Size

      80KB

    • MD5

      f3327a85844a5806782da40c4df8b2c0

    • SHA1

      03a54a14dad390b0443fa1141b2b9d861d1beb14

    • SHA256

      1a0d17f5c56f15fd79ce82e307cdea1a67eed9ade0eb32e2b632ae107bd9f6ae

    • SHA512

      75b8d6a40805ece98301ede687fc9ac44449f89b1101b5585f9187a2477bf05baf478512945169641c656fe50b6917046a1677685d6671d2315f99b5debc61f8

    • SSDEEP

      768:AfMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:AfbIvYvZEyFKF6N4yS+AQmZTl/5

    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks