Overview

overview

10

Static

static

10

620addb46b...0N.exe

windows7-x64

10

620addb46b...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    620addb46b197ffdd7335b7963a6d620N.exe

  • Size

    316KB

  • MD5

    620addb46b197ffdd7335b7963a6d620

  • SHA1

    c516e0d512f797ee63a2cf2872f6a81529eec6c0

  • SHA256

    d650281754c0fa58cbdb54d310abec81908f9ddaa84ac842dcf77e2cb510a340

  • SHA512

    32d18384b5427c013221278cd03a1e6be14fc35c8017e9134d9e38e5c31e581ebaee02c532924de5ef05e412a112c3336455e87930701e82956d4a6ba5cdfda1

  • SSDEEP

    1536:g4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:gIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 620addb46b197ffdd7335b7963a6d620N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections