Overview

overview

10

Static

static

10

58d7a167a6...0N.exe

windows7-x64

10

58d7a167a6...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    58d7a167a667bb54274095aefba3b840N.exe

  • Size

    316KB

  • MD5

    58d7a167a667bb54274095aefba3b840

  • SHA1

    619e293c34f4d7e8cb6f1dc86623b7f89ed2bbda

  • SHA256

    598f89a04d1518f5426aec06adbc654e68e19184b5b589cbfd38f61946dac84a

  • SHA512

    3b5f58cffe62d3fbd7c5dd78485e1dc549010b41b3f9b632dc9194c95d8527c6620c4ce33a483cda6499ea5e42ca1da4ebaaaabe5f3497935dcf60f6bbb8f654

  • SSDEEP

    1536:w4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:wIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 58d7a167a667bb54274095aefba3b840N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections