General

  • Target

    bec93f1250c51d48d060b371acc0d310N.exe

  • Size

    316KB

  • Sample

    240819-we2e8a1gmq

  • MD5

    bec93f1250c51d48d060b371acc0d310

  • SHA1

    0c19bc95f4e2fa15006c72fa0901ce825e4f82db

  • SHA256

    65cc7d1be9580d6cf709561744f9a72ac08259b77db1dde2b6af6e4d47adec28

  • SHA512

    ce6a585a29030a7e81627253a30c991dc57e818bae73b46d78b5a9930499ca5fcfc4f95ed272b003ed3539b5afb563ad8d0ed0f78208c463e45901c4d67175c1

  • SSDEEP

    1536:u4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:uIdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      bec93f1250c51d48d060b371acc0d310N.exe

    • Size

      316KB

    • MD5

      bec93f1250c51d48d060b371acc0d310

    • SHA1

      0c19bc95f4e2fa15006c72fa0901ce825e4f82db

    • SHA256

      65cc7d1be9580d6cf709561744f9a72ac08259b77db1dde2b6af6e4d47adec28

    • SHA512

      ce6a585a29030a7e81627253a30c991dc57e818bae73b46d78b5a9930499ca5fcfc4f95ed272b003ed3539b5afb563ad8d0ed0f78208c463e45901c4d67175c1

    • SSDEEP

      1536:u4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:uIdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks