General
-
Target
89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043bN.exe
-
Size
96KB
-
Sample
250120-nhzf2awqcv
-
MD5
11f745ff5fba532c6ed198071295e5a0
-
SHA1
e938df26d9135a8ed58e71467902416fefb6eacc
-
SHA256
89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043b
-
SHA512
57ae692375323b6ccc29cdc2d14eb0edfa11501469bdb0e70fa76bd729779d159f48c568eedad297f3bfe5ad118c299610e81e7ba69f6f7c597adf94a4800830
-
SSDEEP
1536:QnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:QGs8cd8eXlYairZYqMddH13L
Static task
static1
Behavioral task
behavioral1
Sample
89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043bN.exe
Resource
win7-20240903-en
Malware Config
Extracted
neconyd
http://ow5dirasuek.com/
http://mkkuei4kdsz.com/
http://lousta.net/
Targets
-
-
Target
89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043bN.exe
-
Size
96KB
-
MD5
11f745ff5fba532c6ed198071295e5a0
-
SHA1
e938df26d9135a8ed58e71467902416fefb6eacc
-
SHA256
89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043b
-
SHA512
57ae692375323b6ccc29cdc2d14eb0edfa11501469bdb0e70fa76bd729779d159f48c568eedad297f3bfe5ad118c299610e81e7ba69f6f7c597adf94a4800830
-
SSDEEP
1536:QnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:QGs8cd8eXlYairZYqMddH13L
-
Neconyd family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-