neconyd | 34fce2719fc153d1a1358a6af870787c3261730a4c3f3b098eab70d6418dda1f | Triage

Sharing

General

Target

34fce2719fc153d1a1358a6af870787c3261730a4c3f3b098eab70d6418dda1f.exe
Size

68KB
Sample

241123-p58tna1pel
MD5

5b93ed1c83192a9c9a3b8400c6320e7d
SHA1

2edde326e9b9b5d27f68fa2e6e45f868aa4ece55
SHA256

34fce2719fc153d1a1358a6af870787c3261730a4c3f3b098eab70d6418dda1f
SHA512

72e761161b410a46db0879afc16b67fe21d9bf4da862db56011949c52c0314058de3de463bc0688e5a96f62aab1821896c02ebe15ecf4bdf01c7e62062081cca
SSDEEP

1536:7d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5v:LdseIOMEZEyFjEOFqTiQm5l/5v

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  34fce2719fc153d1a1358a6af870787c3261730a4c3f3b098eab70d6418dda1f.exe
- Size
  
  68KB
- MD5
  
  5b93ed1c83192a9c9a3b8400c6320e7d
- SHA1
  
  2edde326e9b9b5d27f68fa2e6e45f868aa4ece55
- SHA256
  
  34fce2719fc153d1a1358a6af870787c3261730a4c3f3b098eab70d6418dda1f
- SHA512
  
  72e761161b410a46db0879afc16b67fe21d9bf4da862db56011949c52c0314058de3de463bc0688e5a96f62aab1821896c02ebe15ecf4bdf01c7e62062081cca
- SSDEEP
  
  1536:7d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5v:LdseIOMEZEyFjEOFqTiQm5l/5v
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan