Overview

overview

10

Static

static

10

0b0bb77875...aN.exe

windows7-x64

10

0b0bb77875...aN.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b0bb778750e6279169763562387664b9163595eb53894d6f73d7bef0e3d63daN

  • Size

    316KB

  • MD5

    e508b55d60cdf5c79e6cf4c97a190d30

  • SHA1

    ed74c2bae6c7c165de02897dd3f649cd6727d280

  • SHA256

    0b0bb778750e6279169763562387664b9163595eb53894d6f73d7bef0e3d63da

  • SHA512

    f3d0e9307630ec1c762ee298f03cd985926eba1d5e9c134d39a941f3ac98f13895622cffc8e5978ac34f8feb245643ffb9b181249d5fc297f923cd7d6014a357

  • SSDEEP

    1536:f4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:fIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0b0bb778750e6279169763562387664b9163595eb53894d6f73d7bef0e3d63daN
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections