General

  • Target

    c23ee1f462e0868f8f996598e9958800N.exe

  • Size

    316KB

  • MD5

    c23ee1f462e0868f8f996598e9958800

  • SHA1

    c84d40e4a73df4792c97549d12af2abc4c99b8ba

  • SHA256

    25193de92b28441639d44c887aa547fa07c02ab516fb76ba8ae515614a58eb2c

  • SHA512

    71cd3ac73696cbe4ed7b6d8d9119a207a903ca7197175a56e0905201d8247666d341497ed3b8e838f056725df3717ed57943f6413b304d2493dde8223e1145b0

  • SSDEEP

    1536:K4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:KIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c23ee1f462e0868f8f996598e9958800N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections