General

  • Target

    a003708a732435ee0243490169420740N.exe

  • Size

    316KB

  • Sample

    240820-qlyp1stfka

  • MD5

    a003708a732435ee0243490169420740

  • SHA1

    38f752d0f97d8231713730dd1abe17d0ae5b30b4

  • SHA256

    9723bbd8f54d04b66f58252add908cd0e59db0724efe2503d8ca82f123ae2844

  • SHA512

    544bbf4548c5dd2bf3f603b256345d3f376a9b7508c8b5fcb3c954449ed20778f392b09a8c2ba5f040361604ca354c649c9ad4c0819c04e408b076fc046856e9

  • SSDEEP

    1536:/4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:/IdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      a003708a732435ee0243490169420740N.exe

    • Size

      316KB

    • MD5

      a003708a732435ee0243490169420740

    • SHA1

      38f752d0f97d8231713730dd1abe17d0ae5b30b4

    • SHA256

      9723bbd8f54d04b66f58252add908cd0e59db0724efe2503d8ca82f123ae2844

    • SHA512

      544bbf4548c5dd2bf3f603b256345d3f376a9b7508c8b5fcb3c954449ed20778f392b09a8c2ba5f040361604ca354c649c9ad4c0819c04e408b076fc046856e9

    • SSDEEP

      1536:/4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:/IdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks