Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6c0e6bbe86c9a0e04014931ffaba574a2bbf887c30279f37b146749ba1287838N.exe

  • Size

    62KB

  • Sample

    241211-hky1ds1qbx

  • MD5

    df08ca205667853d491e42d928c9d610

  • SHA1

    78a3e1feca053e32598a4a0326bd432fed5e1c7d

  • SHA256

    6c0e6bbe86c9a0e04014931ffaba574a2bbf887c30279f37b146749ba1287838

  • SHA512

    dbca285b8ab81329c442e8d81ae5d83ffc72565c857c9211aeb1090f0b1a7a4701e63178e331e84b01fa3082c93597dd984c7b2827b181490d03f79946d4639d

  • SSDEEP

    768:dMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uAf:dbIvYvZEyFKF6N4yS+AQmZtl/53

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      6c0e6bbe86c9a0e04014931ffaba574a2bbf887c30279f37b146749ba1287838N.exe

    • Size

      62KB

    • MD5

      df08ca205667853d491e42d928c9d610

    • SHA1

      78a3e1feca053e32598a4a0326bd432fed5e1c7d

    • SHA256

      6c0e6bbe86c9a0e04014931ffaba574a2bbf887c30279f37b146749ba1287838

    • SHA512

      dbca285b8ab81329c442e8d81ae5d83ffc72565c857c9211aeb1090f0b1a7a4701e63178e331e84b01fa3082c93597dd984c7b2827b181490d03f79946d4639d

    • SSDEEP

      768:dMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uAf:dbIvYvZEyFKF6N4yS+AQmZtl/53

    • Neconyd

      Neconyd is a trojan written in C++.

    • Neconyd family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks