Overview

overview

10

Static

static

10

143020eb7c...bN.exe

windows7-x64

10

143020eb7c...bN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    143020eb7c54cab3b7158a39100131aa7bbaf61620b720f4c6e1a7135a270d1bN.exe

  • Size

    35KB

  • Sample

    241206-3mrz3stpet

  • MD5

    5652599febc626acdf447b183c0dca30

  • SHA1

    1be7bbe1eb908704eaa1b8540740904be7842c0f

  • SHA256

    143020eb7c54cab3b7158a39100131aa7bbaf61620b720f4c6e1a7135a270d1b

  • SHA512

    b33ac534ac977837be737d90beb4a73aa240a223a33e9f365a9e60b5c559364f12c5b618a4d0794d6cb7f90c78518f0e51a96593e6f14e5ef9f2d45f6a4fe0d0

  • SSDEEP

    768:K6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB9:J8Z0kA7FHlO2OwOTUtKjpB9

Score
10/10
neconyddiscoverytrojanupx

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      143020eb7c54cab3b7158a39100131aa7bbaf61620b720f4c6e1a7135a270d1bN.exe

    • Size

      35KB

    • MD5

      5652599febc626acdf447b183c0dca30

    • SHA1

      1be7bbe1eb908704eaa1b8540740904be7842c0f

    • SHA256

      143020eb7c54cab3b7158a39100131aa7bbaf61620b720f4c6e1a7135a270d1b

    • SHA512

      b33ac534ac977837be737d90beb4a73aa240a223a33e9f365a9e60b5c559364f12c5b618a4d0794d6cb7f90c78518f0e51a96593e6f14e5ef9f2d45f6a4fe0d0

    • SSDEEP

      768:K6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB9:J8Z0kA7FHlO2OwOTUtKjpB9

    Score
    10/10
    neconyddiscoverytrojanupx

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Neconyd family

      neconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks