General

  • Target

    89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043bN.exe

  • Size

    96KB

  • Sample

    250120-nhzf2awqcv

  • MD5

    11f745ff5fba532c6ed198071295e5a0

  • SHA1

    e938df26d9135a8ed58e71467902416fefb6eacc

  • SHA256

    89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043b

  • SHA512

    57ae692375323b6ccc29cdc2d14eb0edfa11501469bdb0e70fa76bd729779d159f48c568eedad297f3bfe5ad118c299610e81e7ba69f6f7c597adf94a4800830

  • SSDEEP

    1536:QnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:QGs8cd8eXlYairZYqMddH13L

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043bN.exe

    • Size

      96KB

    • MD5

      11f745ff5fba532c6ed198071295e5a0

    • SHA1

      e938df26d9135a8ed58e71467902416fefb6eacc

    • SHA256

      89d2eff9d935f1ad1305a40d93adbcff1d305db7f124b48aa4437bde4668043b

    • SHA512

      57ae692375323b6ccc29cdc2d14eb0edfa11501469bdb0e70fa76bd729779d159f48c568eedad297f3bfe5ad118c299610e81e7ba69f6f7c597adf94a4800830

    • SSDEEP

      1536:QnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:QGs8cd8eXlYairZYqMddH13L

    • Neconyd

      Neconyd is a trojan written in C++.

    • Neconyd family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.