Overview

overview

10

Static

static

10

d0a55bf720...8a.exe

windows7-x64

10

d0a55bf720...8a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d0a55bf7204241d83f0ec60efc97fca35a731dcc9b585f06aa72294e0bcb758a

  • Size

    316KB

  • MD5

    136b3b630f69c628c981c1633189fe31

  • SHA1

    27b1f849ff70e6a396c2cc7c4a28ac03a8c517fb

  • SHA256

    d0a55bf7204241d83f0ec60efc97fca35a731dcc9b585f06aa72294e0bcb758a

  • SHA512

    4d1b4d3f0d0e11698d529ce0a97532cc8065572f76b9d952b875f3749af1bd87868f3323e9e7aa55b882594fb54458e0c4d5de7dc56c7e0cb824df278d7bd48a

  • SSDEEP

    1536:O4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:OIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d0a55bf7204241d83f0ec60efc97fca35a731dcc9b585f06aa72294e0bcb758a
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections