neconyd | 668488d8e53fe8c3e1fff8d0025024a1a4608782b126382f1d29041f7f97fa23 | Triage

Sharing

General

Target

668488d8e53fe8c3e1fff8d0025024a1a4608782b126382f1d29041f7f97fa23
Size

65KB
Sample

240519-2e5ersea83
MD5

05a2c5419bb6147524a16d30fe6aafb1
SHA1

ee84a1d03382323ab247c3cb7d93a1646b0e4b44
SHA256

668488d8e53fe8c3e1fff8d0025024a1a4608782b126382f1d29041f7f97fa23
SHA512

a81d53fa400ad68f18de55055e32fd08ab656b9e2c9e4cc58dd6c8cd04df46a55a390b24a22a359cc37a054ce4df9f28a9d12de970d0f654e1aaba6a788230fb
SSDEEP

1536:wd9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:wdseIO+EZEyFjEOFqTiQmOl/5

Score

10^/10

neconyd trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  668488d8e53fe8c3e1fff8d0025024a1a4608782b126382f1d29041f7f97fa23
- Size
  
  65KB
- MD5
  
  05a2c5419bb6147524a16d30fe6aafb1
- SHA1
  
  ee84a1d03382323ab247c3cb7d93a1646b0e4b44
- SHA256
  
  668488d8e53fe8c3e1fff8d0025024a1a4608782b126382f1d29041f7f97fa23
- SHA512
  
  a81d53fa400ad68f18de55055e32fd08ab656b9e2c9e4cc58dd6c8cd04df46a55a390b24a22a359cc37a054ce4df9f28a9d12de970d0f654e1aaba6a788230fb
- SSDEEP
  
  1536:wd9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:wdseIO+EZEyFjEOFqTiQmOl/5
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2