neconyd | 6a5c11e47bedc0a5af5fa499ff02e67eefef6b0a829f32360636864314e8cfa0 | Triage

Sharing

General

Target

6a5c11e47bedc0a5af5fa499ff02e67eefef6b0a829f32360636864314e8cfa0
Size

68KB
Sample

240805-2kca6svbmd
MD5

0295c61e19ad7ba011aa17ec0dd2394a
SHA1

3481a44ab262289f4863fe9180eb7644474d0281
SHA256

6a5c11e47bedc0a5af5fa499ff02e67eefef6b0a829f32360636864314e8cfa0
SHA512

8b8294af942b27f226afd2a1f1f8a13f9ef45f5ce61c9087c3db61df3cf82cd5e4ed8c44c53a3fc3e9021f95e9d51002397b62e6a8eb3f7102bd34bc124a8108
SSDEEP

1536:7d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:LdseIOMEZEyFjEOFqTiQm5l/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6a5c11e47bedc0a5af5fa499ff02e67eefef6b0a829f32360636864314e8cfa0
- Size
  
  68KB
- MD5
  
  0295c61e19ad7ba011aa17ec0dd2394a
- SHA1
  
  3481a44ab262289f4863fe9180eb7644474d0281
- SHA256
  
  6a5c11e47bedc0a5af5fa499ff02e67eefef6b0a829f32360636864314e8cfa0
- SHA512
  
  8b8294af942b27f226afd2a1f1f8a13f9ef45f5ce61c9087c3db61df3cf82cd5e4ed8c44c53a3fc3e9021f95e9d51002397b62e6a8eb3f7102bd34bc124a8108
- SSDEEP
  
  1536:7d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:LdseIOMEZEyFjEOFqTiQm5l/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan