neconyd | 2706bf3c9be1012662c48ca1298db668469149de0099739add6501368fddaaea | Triage

Sharing

General

Target

2706bf3c9be1012662c48ca1298db668469149de0099739add6501368fddaaea
Size

61KB
Sample

241121-ze43ws1rfj
MD5

99994b1679375a2ac43a437ef21d6f72
SHA1

301112fb37cf91a55e1c956370e0c08d85435ca6
SHA256

2706bf3c9be1012662c48ca1298db668469149de0099739add6501368fddaaea
SHA512

cfa36e00f4c2a94038cf55270e311c951fec2df94640ab72e1e4a3958f45f5e3829da05ea2bee3343f08f9d855c9809e3e2221ad303b1f01d0b4e20cb45d62e0
SSDEEP

1536:5d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5P:ZdseIOMEZEyFjEOFqTiQmil/5P

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  2706bf3c9be1012662c48ca1298db668469149de0099739add6501368fddaaea
- Size
  
  61KB
- MD5
  
  99994b1679375a2ac43a437ef21d6f72
- SHA1
  
  301112fb37cf91a55e1c956370e0c08d85435ca6
- SHA256
  
  2706bf3c9be1012662c48ca1298db668469149de0099739add6501368fddaaea
- SHA512
  
  cfa36e00f4c2a94038cf55270e311c951fec2df94640ab72e1e4a3958f45f5e3829da05ea2bee3343f08f9d855c9809e3e2221ad303b1f01d0b4e20cb45d62e0
- SSDEEP
  
  1536:5d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5P:ZdseIOMEZEyFjEOFqTiQmil/5P
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan