Overview

overview

10

Static

static

10

6d6d626bfa...0N.exe

windows7-x64

10

6d6d626bfa...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6d6d626bfa12bf28a6124baa92eea4e0N.exe

  • Size

    316KB

  • MD5

    6d6d626bfa12bf28a6124baa92eea4e0

  • SHA1

    41b36c89cd8d8b9ec47fd18dd981dbb3b41dffff

  • SHA256

    51a88d746f78f111f19eb2ea44ed21077193de31e37ec7114807ee0fc103c530

  • SHA512

    2abb7e0d5dc93e0521dae21acb962c35c1156bee44f4a93396c9f05769d507482361b716f212953dcbd0155de6910319fcd8b3df811e6a577dcd8d6370348421

  • SSDEEP

    1536:84d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:8IdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6d6d626bfa12bf28a6124baa92eea4e0N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections