Resubmissions

23/08/2024, 17:56

240823-wh9wrsxgra 10

23/08/2024, 17:53

240823-wglsjsxgmb 10

General

  • Target

    a8142ffd5bad691c56df87dc4f60f8a0N.exe

  • Size

    35KB

  • MD5

    a8142ffd5bad691c56df87dc4f60f8a0

  • SHA1

    2b2b880aa582e8fe269307602913daafdfed3189

  • SHA256

    2064e819a7ac9d7bbf24f4ac4978a6d53afa12c6c036be8e04160718b89913b2

  • SHA512

    9241cc3bb6b28c5712d424d9feef9efe7e43caa9fff493991aa9b10e7e42f02109f224af00db3f58abf7fdc9a0a284465db2512fdf71aff71efba0b02f01450f

  • SSDEEP

    768:s6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:r8Z0kA7FHlO2OwOTUtKjpB

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a8142ffd5bad691c56df87dc4f60f8a0N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections