General

  • Target

    84c30e64f9e93fc7de0434e29ff851d0N.exe

  • Size

    76KB

  • Sample

    240821-kvc7satcll

  • MD5

    84c30e64f9e93fc7de0434e29ff851d0

  • SHA1

    86898353f704f892b88fa8998e1bd0fd30a8239c

  • SHA256

    22cf1514b4080c493773e0b25690b28d82525769c9280db74dd25ce7ada9ee11

  • SHA512

    6cb35d3da55deb6848f399d10d0937cf67d2d2ccb048845a39b4d62dc310c6e734e17d373e49ee331b9006b4a9408c648cc2b82f95ea31e4a7348b98ce2a9a31

  • SSDEEP

    1536:ld9dseIOcE93bIvYvZEyF4EEOF6N4XS+AQmZTl/5w11:NdseIOMEZEyFjEOFqaiQm5l/5w11

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      84c30e64f9e93fc7de0434e29ff851d0N.exe

    • Size

      76KB

    • MD5

      84c30e64f9e93fc7de0434e29ff851d0

    • SHA1

      86898353f704f892b88fa8998e1bd0fd30a8239c

    • SHA256

      22cf1514b4080c493773e0b25690b28d82525769c9280db74dd25ce7ada9ee11

    • SHA512

      6cb35d3da55deb6848f399d10d0937cf67d2d2ccb048845a39b4d62dc310c6e734e17d373e49ee331b9006b4a9408c648cc2b82f95ea31e4a7348b98ce2a9a31

    • SSDEEP

      1536:ld9dseIOcE93bIvYvZEyF4EEOF6N4XS+AQmZTl/5w11:NdseIOMEZEyFjEOFqaiQm5l/5w11

    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks