neconyd | 979004c4485f5fa39b8fd97543b66034f2ca924736feaf832456543430fb8c13 | Triage

Sharing

General

Target

979004c4485f5fa39b8fd97543b66034f2ca924736feaf832456543430fb8c13.exe
Size

62KB
Sample

241127-fxndbawjgr
MD5

9ad6250a85082edeec3963bf3880ac2f
SHA1

944b1d62a57318d6b7d5acb20843984813b061cd
SHA256

979004c4485f5fa39b8fd97543b66034f2ca924736feaf832456543430fb8c13
SHA512

2e6f749acada8c660dfc3af2376cc84766269cb32d671d54594b2c8e30deae14f89ffb4076a4b4360b9195a98138a6e2e0e444300ee98e1e349919c0e097539d
SSDEEP

768:NMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uA1:NbIvYvZEyFKF6N4yS+AQmZtl/59

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  979004c4485f5fa39b8fd97543b66034f2ca924736feaf832456543430fb8c13.exe
- Size
  
  62KB
- MD5
  
  9ad6250a85082edeec3963bf3880ac2f
- SHA1
  
  944b1d62a57318d6b7d5acb20843984813b061cd
- SHA256
  
  979004c4485f5fa39b8fd97543b66034f2ca924736feaf832456543430fb8c13
- SHA512
  
  2e6f749acada8c660dfc3af2376cc84766269cb32d671d54594b2c8e30deae14f89ffb4076a4b4360b9195a98138a6e2e0e444300ee98e1e349919c0e097539d
- SSDEEP
  
  768:NMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uA1:NbIvYvZEyFKF6N4yS+AQmZtl/59
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan