Overview

overview

10

Static

static

10

65892681d3...cN.exe

windows7-x64

10

65892681d3...cN.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    65892681d3c3591f75d39ac5c79a9479863dbdd3ddf2bae010e3c56125914eccN

  • Size

    316KB

  • MD5

    21e9ff1d6f1f221ed57c1b352cb295c0

  • SHA1

    7535fae5635bf566ff7adf2ce62cbc39462a5def

  • SHA256

    65892681d3c3591f75d39ac5c79a9479863dbdd3ddf2bae010e3c56125914ecc

  • SHA512

    acdc81158d0112b0985b7139ffe13c5dc9d8a9c04561525c9900a5a067dce7232349be2e07e3145a5f9158dd2449eebc7abc258f993d6c141d161835c712e07c

  • SSDEEP

    1536:b4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:bIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 65892681d3c3591f75d39ac5c79a9479863dbdd3ddf2bae010e3c56125914eccN
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections