General

  • Target

    58d7a167a667bb54274095aefba3b840N.exe

  • Size

    316KB

  • Sample

    240819-tcb2fawhjr

  • MD5

    58d7a167a667bb54274095aefba3b840

  • SHA1

    619e293c34f4d7e8cb6f1dc86623b7f89ed2bbda

  • SHA256

    598f89a04d1518f5426aec06adbc654e68e19184b5b589cbfd38f61946dac84a

  • SHA512

    3b5f58cffe62d3fbd7c5dd78485e1dc549010b41b3f9b632dc9194c95d8527c6620c4ce33a483cda6499ea5e42ca1da4ebaaaabe5f3497935dcf60f6bbb8f654

  • SSDEEP

    1536:w4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:wIdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      58d7a167a667bb54274095aefba3b840N.exe

    • Size

      316KB

    • MD5

      58d7a167a667bb54274095aefba3b840

    • SHA1

      619e293c34f4d7e8cb6f1dc86623b7f89ed2bbda

    • SHA256

      598f89a04d1518f5426aec06adbc654e68e19184b5b589cbfd38f61946dac84a

    • SHA512

      3b5f58cffe62d3fbd7c5dd78485e1dc549010b41b3f9b632dc9194c95d8527c6620c4ce33a483cda6499ea5e42ca1da4ebaaaabe5f3497935dcf60f6bbb8f654

    • SSDEEP

      1536:w4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:wIdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks