neconyd | d7008019cff14b3799530e6daeaf877574231755b4c3255426c1acead1f2cb12 | Triage

Sharing

General

Target

3963d407a567b49dd63e3af8d659d610N.exe
Size

92KB
Sample

240825-e76f7svdnf
MD5

3963d407a567b49dd63e3af8d659d610
SHA1

7dc611cb1055dd12591a257f537d05f17dcfaf39
SHA256

d7008019cff14b3799530e6daeaf877574231755b4c3255426c1acead1f2cb12
SHA512

9e7e6b599e866ebc8b0db66c7d90cc110d97901d181c5a0295670ea4bae1e8919a4c058400e655474765ad927a34ebd7574471ca2a8aece33f9f1e0221e9586a
SSDEEP

1536:gd9dseIOcEr3bIvYvZEyF4EEOF6N4yS+AQmZTl/5:AdseIOyEZEyFjEOFqTiQm5l/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  3963d407a567b49dd63e3af8d659d610N.exe
- Size
  
  92KB
- MD5
  
  3963d407a567b49dd63e3af8d659d610
- SHA1
  
  7dc611cb1055dd12591a257f537d05f17dcfaf39
- SHA256
  
  d7008019cff14b3799530e6daeaf877574231755b4c3255426c1acead1f2cb12
- SHA512
  
  9e7e6b599e866ebc8b0db66c7d90cc110d97901d181c5a0295670ea4bae1e8919a4c058400e655474765ad927a34ebd7574471ca2a8aece33f9f1e0221e9586a
- SSDEEP
  
  1536:gd9dseIOcEr3bIvYvZEyF4EEOF6N4yS+AQmZTl/5:AdseIOyEZEyFjEOFqTiQm5l/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan