neconyd | 3fd94fa540e3337a5ba9a1586369a846c9275df23c8ceb8affcab9cd1d51e187 | Triage

Sharing

General

Target

3fd94fa540e3337a5ba9a1586369a846c9275df23c8ceb8affcab9cd1d51e187
Size

65KB
Sample

240528-zjjbzscg82
MD5

4909e52d4f4d2bd46afaf4e4e259e07c
SHA1

fc258b633e517b5652d001329f03d104d531a4ed
SHA256

3fd94fa540e3337a5ba9a1586369a846c9275df23c8ceb8affcab9cd1d51e187
SHA512

12023aee89a7bbd6628dd630a5061ae939298117e095a75db431adf3f7c129f368292469d7a010c5a760f379bc5ab8135bbde62de411c4606636f2cb51599dbd
SSDEEP

1536:Ud9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:sdseIO+EZEyFjEOFqTiQmOl/5

Score

10^/10

neconyd trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  3fd94fa540e3337a5ba9a1586369a846c9275df23c8ceb8affcab9cd1d51e187
- Size
  
  65KB
- MD5
  
  4909e52d4f4d2bd46afaf4e4e259e07c
- SHA1
  
  fc258b633e517b5652d001329f03d104d531a4ed
- SHA256
  
  3fd94fa540e3337a5ba9a1586369a846c9275df23c8ceb8affcab9cd1d51e187
- SHA512
  
  12023aee89a7bbd6628dd630a5061ae939298117e095a75db431adf3f7c129f368292469d7a010c5a760f379bc5ab8135bbde62de411c4606636f2cb51599dbd
- SSDEEP
  
  1536:Ud9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:sdseIO+EZEyFjEOFqTiQmOl/5
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2