neconyd | 1f1ce439dcb822100bd991be62fe9a1f73c6209847dc654570d2bba4ee0a49b8 | Triage

Sharing

General

Target

1f1ce439dcb822100bd991be62fe9a1f73c6209847dc654570d2bba4ee0a49b8.exe
Size

90KB
Sample

241124-3gxnda1pfr
MD5

0ef317c68831507eff1c6ecc1296b788
SHA1

e335614433169909ff1e1b6dccfbbb84f2d65998
SHA256

1f1ce439dcb822100bd991be62fe9a1f73c6209847dc654570d2bba4ee0a49b8
SHA512

46d3f2fd614ca32d47a8a6bb93f314791e65fa49ef1bbeae8e927571c0758eb430985b9be102931bdf02da3dbd1c451dcbbb0011317767d8719ddb62efa09db4
SSDEEP

768:8MEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAq:8bIvYvZEyFKF6N4aS5AQmZTl/5S

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  1f1ce439dcb822100bd991be62fe9a1f73c6209847dc654570d2bba4ee0a49b8.exe
- Size
  
  90KB
- MD5
  
  0ef317c68831507eff1c6ecc1296b788
- SHA1
  
  e335614433169909ff1e1b6dccfbbb84f2d65998
- SHA256
  
  1f1ce439dcb822100bd991be62fe9a1f73c6209847dc654570d2bba4ee0a49b8
- SHA512
  
  46d3f2fd614ca32d47a8a6bb93f314791e65fa49ef1bbeae8e927571c0758eb430985b9be102931bdf02da3dbd1c451dcbbb0011317767d8719ddb62efa09db4
- SSDEEP
  
  768:8MEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAq:8bIvYvZEyFKF6N4aS5AQmZTl/5S
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan