neconyd | 74f8aa53944d2070e3923af31fefbe49160b1f978be2528abb476dc28b0d1b0c | Triage

Sharing

General

Target

74f8aa53944d2070e3923af31fefbe49160b1f978be2528abb476dc28b0d1b0c
Size

88KB
Sample

241123-add3msspdy
MD5

14c8829e10b2cc00a771adaef1f721b9
SHA1

d1a5ca499844c45c49a4e253523029fb1e8fc91c
SHA256

74f8aa53944d2070e3923af31fefbe49160b1f978be2528abb476dc28b0d1b0c
SHA512

4c588b566c9fbe21e54b556427d68de67a74c8810631c4f4aad1a259dc9f557c83f9547fb927658f5396bdebce325fdb38e3af5394ac33e44014da37a252f509
SSDEEP

768:gMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:gbIvYvZEyFKF6N4yS+AQmZTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  74f8aa53944d2070e3923af31fefbe49160b1f978be2528abb476dc28b0d1b0c
- Size
  
  88KB
- MD5
  
  14c8829e10b2cc00a771adaef1f721b9
- SHA1
  
  d1a5ca499844c45c49a4e253523029fb1e8fc91c
- SHA256
  
  74f8aa53944d2070e3923af31fefbe49160b1f978be2528abb476dc28b0d1b0c
- SHA512
  
  4c588b566c9fbe21e54b556427d68de67a74c8810631c4f4aad1a259dc9f557c83f9547fb927658f5396bdebce325fdb38e3af5394ac33e44014da37a252f509
- SSDEEP
  
  768:gMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:gbIvYvZEyFKF6N4yS+AQmZTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan