neconyd | 28a864872ebdc9d8f5e7f8fe0251884ef8b554b38314af53999b80049f09229f | Triage

Sharing

General

Target

28a864872ebdc9d8f5e7f8fe0251884ef8b554b38314af53999b80049f09229f
Size

64KB
Sample

240524-ymhdesha8x
MD5

6efc1dfe929aafdd978bcff59b2f3410
SHA1

b8b7d7191aa197040282b5d9a303e4d3b3079eff
SHA256

28a864872ebdc9d8f5e7f8fe0251884ef8b554b38314af53999b80049f09229f
SHA512

fc7daaa75a338ee4f044813363f4144d81b796080cd8b54b7fc1daa147197fd8d84783618c41d99b1790f341da3dd194bdef12cf0af0072ff0c0720a71355fe6
SSDEEP

768:+MEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:+bIvYvZEyFKF6N4yS+AQmZcl/5

Score

10^/10

neconyd trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  28a864872ebdc9d8f5e7f8fe0251884ef8b554b38314af53999b80049f09229f
- Size
  
  64KB
- MD5
  
  6efc1dfe929aafdd978bcff59b2f3410
- SHA1
  
  b8b7d7191aa197040282b5d9a303e4d3b3079eff
- SHA256
  
  28a864872ebdc9d8f5e7f8fe0251884ef8b554b38314af53999b80049f09229f
- SHA512
  
  fc7daaa75a338ee4f044813363f4144d81b796080cd8b54b7fc1daa147197fd8d84783618c41d99b1790f341da3dd194bdef12cf0af0072ff0c0720a71355fe6
- SSDEEP
  
  768:+MEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:+bIvYvZEyFKF6N4yS+AQmZcl/5
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2