Overview

overview

10

Static

static

10

6369007bc8...0N.exe

windows7-x64

10

6369007bc8...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6369007bc853b855cc6a9dc5386a8fe0N.exe

  • Size

    316KB

  • MD5

    6369007bc853b855cc6a9dc5386a8fe0

  • SHA1

    1f97907502a0b65508772db4d0a1cccf8b239c1c

  • SHA256

    b3231b82798ca50cd6f6973b02d7f335c2cf67418c44ad0fa020b4a23175c892

  • SHA512

    c13868776fe3670f665d48d9a30f15c86dbb3940f19ed04e2c5049c7c8b61f33ba4eba4910c05f406be9c777db2cacf624909a3156db8953d7c856468b1c18f6

  • SSDEEP

    1536:54d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:5IdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6369007bc853b855cc6a9dc5386a8fe0N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections