Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1fe0a57e19d8488fdb8ac63f38cb0160bba134f5154cf35f230417751f85bc89.exe

  • Size

    90KB

  • Sample

    250125-rj4nxswmcv

  • MD5

    58ecb69d1c68c8f3834a96c026fea75c

  • SHA1

    10fd25a7d6127caf506d93d03f9203bb78ca5ffe

  • SHA256

    1fe0a57e19d8488fdb8ac63f38cb0160bba134f5154cf35f230417751f85bc89

  • SHA512

    116bb69fcff1f70d2ace23a90da1b6a1437286f92a6021a09621bcbb45e09ff2ba96d40b10c571186dcba2875582c609578ee43ef0829c45d6cf6f42a93f4e59

  • SSDEEP

    768:vMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAe:vbIvYvZEyFKF6N4aS5AQmZTl/52

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      1fe0a57e19d8488fdb8ac63f38cb0160bba134f5154cf35f230417751f85bc89.exe

    • Size

      90KB

    • MD5

      58ecb69d1c68c8f3834a96c026fea75c

    • SHA1

      10fd25a7d6127caf506d93d03f9203bb78ca5ffe

    • SHA256

      1fe0a57e19d8488fdb8ac63f38cb0160bba134f5154cf35f230417751f85bc89

    • SHA512

      116bb69fcff1f70d2ace23a90da1b6a1437286f92a6021a09621bcbb45e09ff2ba96d40b10c571186dcba2875582c609578ee43ef0829c45d6cf6f42a93f4e59

    • SSDEEP

      768:vMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAe:vbIvYvZEyFKF6N4aS5AQmZTl/52

    • Neconyd

      Neconyd is a trojan written in C++.

    • Neconyd family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks