neconyd | 19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849f | Triage

Submit
Reports

Overview

overview

Static

static

19fbba587a...fN.exe

windows7-x64

19fbba587a...fN.exe

windows10-2004-x64

Sharing

General

Target

19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849fN.exe
Size

248KB
Sample

241124-gp6elatjhl
MD5

97011734bf948f491928816794a03a10
SHA1

9341e36a596980bec4e474a2d20c4c5edc9497ef
SHA256

19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849f
SHA512

3604f417b2c38646612f7f51667e98e32003173b74c4fc3caf08eb289dfc3ec11293a467f79321ac01a82afd9df40bf1d4211f855b1e61a2656935e18b7bae27
SSDEEP

1536:R4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZMnOHBRzU:RIdseIO+EZEyFjEOFqTiQmGnOHjzU

Score

10^/10

neconyd discovery trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849fN.exe

Resource

win7-20240903-en

neconyd discovery trojan upx

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849fN.exe

Resource

win10v2004-20241007-en

neconyd discovery trojan upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849fN.exe
- Size
  
  248KB
- MD5
  
  97011734bf948f491928816794a03a10
- SHA1
  
  9341e36a596980bec4e474a2d20c4c5edc9497ef
- SHA256
  
  19fbba587a6d3d4b6540a879f2bcaa206c3e1ec6b4ee80e58184779178ab849f
- SHA512
  
  3604f417b2c38646612f7f51667e98e32003173b74c4fc3caf08eb289dfc3ec11293a467f79321ac01a82afd9df40bf1d4211f855b1e61a2656935e18b7bae27
- SSDEEP
  
  1536:R4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZMnOHBRzU:RIdseIO+EZEyFjEOFqTiQmGnOHjzU
Score

10^/10

neconyd discovery trojan upx
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojanupx

behavioral2

neconyddiscoverytrojanupx

© 2018-2025

Terms | Privacy