Overview

overview

10

Static

static

3

7c9813ba83...45.exe

windows7-x64

10

7c9813ba83...45.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c9813ba830d9f01d25baa6467f98c3e98efd009acbcc983605d471970259345.exe

  • Size

    96KB

  • Sample

    250129-decgzsynay

  • MD5

    5ec2d98eed16ff460b007d4e1906b847

  • SHA1

    083ea682b0221622e57184ba39a8a15477a426fd

  • SHA256

    7c9813ba830d9f01d25baa6467f98c3e98efd009acbcc983605d471970259345

  • SHA512

    65d570166147941bfb8a52c4f09c2502bb070b083b92d9177b7f1a5906da2a28197bdc31cc4bf7f9326ce68fd52e59c318191610829d0c29e610faeb3249a793

  • SSDEEP

    1536:anAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxz:aGs8cd8eXlYairZYqMddH13z

Score
10/10
neconyddiscoverytrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      7c9813ba830d9f01d25baa6467f98c3e98efd009acbcc983605d471970259345.exe

    • Size

      96KB

    • MD5

      5ec2d98eed16ff460b007d4e1906b847

    • SHA1

      083ea682b0221622e57184ba39a8a15477a426fd

    • SHA256

      7c9813ba830d9f01d25baa6467f98c3e98efd009acbcc983605d471970259345

    • SHA512

      65d570166147941bfb8a52c4f09c2502bb070b083b92d9177b7f1a5906da2a28197bdc31cc4bf7f9326ce68fd52e59c318191610829d0c29e610faeb3249a793

    • SSDEEP

      1536:anAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxz:aGs8cd8eXlYairZYqMddH13z

    Score
    10/10
    neconyddiscoverytrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Neconyd family

      neconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks