Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bcN.exe

  • Size

    72KB

  • Sample

    250127-ck5kaavqbt

  • MD5

    6fe48d5c17a51a1e1cdc580929ecf150

  • SHA1

    4a9ef6964981bc925abaa5b71acba37ef701dc63

  • SHA256

    54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bc

  • SHA512

    f6343572658a44f6df4ae82ac8bd0804130baeb5621e3cafa8c6388e52dce08709f569f7aebdb2887c601d0a05a6ae4875d66c9c650e271cfb7c20b6150a3451

  • SSDEEP

    1536:Jd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211v:JdseIOMEZEyFjEOFqTiQm5l/5211v

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bcN.exe

    • Size

      72KB

    • MD5

      6fe48d5c17a51a1e1cdc580929ecf150

    • SHA1

      4a9ef6964981bc925abaa5b71acba37ef701dc63

    • SHA256

      54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bc

    • SHA512

      f6343572658a44f6df4ae82ac8bd0804130baeb5621e3cafa8c6388e52dce08709f569f7aebdb2887c601d0a05a6ae4875d66c9c650e271cfb7c20b6150a3451

    • SSDEEP

      1536:Jd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211v:JdseIOMEZEyFjEOFqTiQm5l/5211v

    • Neconyd

      Neconyd is a trojan written in C++.

    • Neconyd family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks