General

  • Target

    1bd6c3daa3adbeb30369aecb269271a8d89d4a393685c69424832a769fedc7b5.exe

  • Size

    33KB

  • Sample

    250122-b89y8ssmfr

  • MD5

    5a47d70d6c14de2812b274ea2865fd7c

  • SHA1

    9e076ff7cd9e0219be632609a6883fdd2e1cecfb

  • SHA256

    1bd6c3daa3adbeb30369aecb269271a8d89d4a393685c69424832a769fedc7b5

  • SHA512

    9dd912c1a3ab0816a1bb04667e5d069966c91b75a47373fb529c73e6b53d645768d80ac42e631fbb9e8139c9cdee50c278a6fb9ad01c8355285c30d922c0e101

  • SSDEEP

    768:8fVhP/4kt3+9IV6Y90ksQ1oWHT0hh0vy9S5fsYGbTmoN/yE56hlSQ7D9:8fVRztyHo8QNHTk0qE5fslvN/956qo

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      1bd6c3daa3adbeb30369aecb269271a8d89d4a393685c69424832a769fedc7b5.exe

    • Size

      33KB

    • MD5

      5a47d70d6c14de2812b274ea2865fd7c

    • SHA1

      9e076ff7cd9e0219be632609a6883fdd2e1cecfb

    • SHA256

      1bd6c3daa3adbeb30369aecb269271a8d89d4a393685c69424832a769fedc7b5

    • SHA512

      9dd912c1a3ab0816a1bb04667e5d069966c91b75a47373fb529c73e6b53d645768d80ac42e631fbb9e8139c9cdee50c278a6fb9ad01c8355285c30d922c0e101

    • SSDEEP

      768:8fVhP/4kt3+9IV6Y90ksQ1oWHT0hh0vy9S5fsYGbTmoN/yE56hlSQ7D9:8fVRztyHo8QNHTk0qE5fslvN/956qo

    • Neconyd

      Neconyd is a trojan written in C++.

    • Neconyd family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.