Overview

overview

10

Static

static

10

b38edde307...0N.exe

windows7-x64

10

b38edde307...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b38edde307af834805b88308b0bddf50N.exe

  • Size

    316KB

  • MD5

    b38edde307af834805b88308b0bddf50

  • SHA1

    c97db581d9df7e0da626b5ac60b5709b936a5a28

  • SHA256

    6ca60fdc9eaf060d36bd255a03a2293882910f225f56c49b1dbdf961ee732554

  • SHA512

    f870b1b2eba762786457764d24c8cec791b6060fc2a3ebc98dec53813860213e94cd51f4b9b26842838a1b646fbdf6fbc615efa82ba8cb4a1234e0c506353b76

  • SSDEEP

    1536:p4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:pIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b38edde307af834805b88308b0bddf50N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections