Overview

overview

10

Static

static

3

15519e0bb4...0f.exe

windows7-x64

10

15519e0bb4...0f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    15519e0bb412420966d63682601f19fac4c2f463e8418ad4491e904822c46a0f.exe

  • Size

    96KB

  • Sample

    250116-em2bra1kfs

  • MD5

    a5ccc22c1115e6263a3a874ed5311a57

  • SHA1

    c130a998884c6effd4c5c5cc7c9633cbab5765e2

  • SHA256

    15519e0bb412420966d63682601f19fac4c2f463e8418ad4491e904822c46a0f

  • SHA512

    370db693b42005be33173b597979274ccacd4c29c73dc1cef65a9bb7c1c9472d752e34af28eff15d7d7fd6e0be7609fe16f6ebc2f8a6d1dcea472c0fface647d

  • SSDEEP

    1536:AnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxD:AGs8cd8eXlYairZYqMddH13D

Score
10/10
neconyddiscoverytrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      15519e0bb412420966d63682601f19fac4c2f463e8418ad4491e904822c46a0f.exe

    • Size

      96KB

    • MD5

      a5ccc22c1115e6263a3a874ed5311a57

    • SHA1

      c130a998884c6effd4c5c5cc7c9633cbab5765e2

    • SHA256

      15519e0bb412420966d63682601f19fac4c2f463e8418ad4491e904822c46a0f

    • SHA512

      370db693b42005be33173b597979274ccacd4c29c73dc1cef65a9bb7c1c9472d752e34af28eff15d7d7fd6e0be7609fe16f6ebc2f8a6d1dcea472c0fface647d

    • SSDEEP

      1536:AnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxD:AGs8cd8eXlYairZYqMddH13D

    Score
    10/10
    neconyddiscoverytrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Neconyd family

      neconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks