neconyd | 28706a55c8770d5ce4bd44669c6cd1deb059bfe4b2189324a23d8c488972a61f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

9820d839f4...KI.exe

windows7-x64

9820d839f4...KI.exe

windows10-2004-x64

Sharing

General

Target

9820d839f42f4f2e9ea4d7957cd24d30_NEIKI
Size

88KB
Sample

240508-b4ktjsbh5s
MD5

9820d839f42f4f2e9ea4d7957cd24d30
SHA1

0760bcc46ad9b2d3bc1f74323fe7049c26310882
SHA256

28706a55c8770d5ce4bd44669c6cd1deb059bfe4b2189324a23d8c488972a61f
SHA512

fac4bf4de9c07477d8ad29edacc2b5a1feaf8e097b2a1fbedaa9b933b5b2e7f8799df61f370f76c1610b541e02e07b5df6581aff1a12c97d4abdb3e38777d40a
SSDEEP

1536:1d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:9dseIOMEZEyFjEOFqTiQm5l/5

Score

10^/10

neconyd trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

9820d839f42f4f2e9ea4d7957cd24d30_NEIKI.exe

Resource

win7-20240221-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

9820d839f42f4f2e9ea4d7957cd24d30_NEIKI.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  9820d839f42f4f2e9ea4d7957cd24d30_NEIKI
- Size
  
  88KB
- MD5
  
  9820d839f42f4f2e9ea4d7957cd24d30
- SHA1
  
  0760bcc46ad9b2d3bc1f74323fe7049c26310882
- SHA256
  
  28706a55c8770d5ce4bd44669c6cd1deb059bfe4b2189324a23d8c488972a61f
- SHA512
  
  fac4bf4de9c07477d8ad29edacc2b5a1feaf8e097b2a1fbedaa9b933b5b2e7f8799df61f370f76c1610b541e02e07b5df6581aff1a12c97d4abdb3e38777d40a
- SSDEEP
  
  1536:1d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:9dseIOMEZEyFjEOFqTiQm5l/5
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy