Overview

overview

10

Static

static

10

0fef790a0c...bN.exe

windows7-x64

10

0fef790a0c...bN.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0fef790a0ce1b142163d61e061238b47be10ecc4930fe56a245fa6ee857d0c9bN

  • Size

    316KB

  • MD5

    a22b2ca2a2b6709ff9cdad897ed67af0

  • SHA1

    d42b02ef9e5a926c0a8dc75530dbf50f8694d90b

  • SHA256

    0fef790a0ce1b142163d61e061238b47be10ecc4930fe56a245fa6ee857d0c9b

  • SHA512

    5db53f785b859e0e95cce2d7f05c58b1abe013f802543737b2374921d3d29febc4cd59288cd81becbfda1117b5e85efa1bfc0a8abd1d9a19db6214450d913b9e

  • SSDEEP

    1536:54d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:5IdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0fef790a0ce1b142163d61e061238b47be10ecc4930fe56a245fa6ee857d0c9bN
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections