General

  • Target

    5c6ac470725af8442eec363553906fa0N.exe

  • Size

    316KB

  • Sample

    240821-cgawhaydlk

  • MD5

    5c6ac470725af8442eec363553906fa0

  • SHA1

    efa0544363bf9ee43f1991b68388d063f1920752

  • SHA256

    944a5dd12beedc9486151e6f0d38ac32af61208e6aec141f97bc3f983c5ac5b7

  • SHA512

    824e8c88ede73448a1c82f9e7995530e2cb8b607bd499edc1d7a8169f7f21944f4fdb3d503ad34f1bf56f10b4c02bf689d9c2438f76a3bc6817de52498f2763a

  • SSDEEP

    1536:84d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:8IdseIO+EZEyFjEOFqTiQmKnOHjzU

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      5c6ac470725af8442eec363553906fa0N.exe

    • Size

      316KB

    • MD5

      5c6ac470725af8442eec363553906fa0

    • SHA1

      efa0544363bf9ee43f1991b68388d063f1920752

    • SHA256

      944a5dd12beedc9486151e6f0d38ac32af61208e6aec141f97bc3f983c5ac5b7

    • SHA512

      824e8c88ede73448a1c82f9e7995530e2cb8b607bd499edc1d7a8169f7f21944f4fdb3d503ad34f1bf56f10b4c02bf689d9c2438f76a3bc6817de52498f2763a

    • SSDEEP

      1536:84d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:8IdseIO+EZEyFjEOFqTiQmKnOHjzU

    • Neconyd

      Neconyd is a trojan written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks