Overview

overview

10

Static

static

10

6d66f1524a...0N.exe

windows7-x64

10

6d66f1524a...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6d66f1524a87696111366d978fe8bd50N.exe

  • Size

    316KB

  • MD5

    6d66f1524a87696111366d978fe8bd50

  • SHA1

    7bca45662e2f53090591f9992fe86cd9aa6baf8e

  • SHA256

    29a65024a7511341bb0f8fd5556d1b9ae6696b7a675a5e0d4f1152d7d8877ab6

  • SHA512

    aff69abcdb8701a400d3b54f21e8ed7a05b975363a955e839d723d8daaa0dae6e8ba9bc88b186e5cb1abf217312da67fe75a0bae9df7f5cec31864e3944a0e2c

  • SSDEEP

    1536:q4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:qIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6d66f1524a87696111366d978fe8bd50N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections