neconyd | 38253f09acc0e511f93f4bebae5f29b06b70620a126a2e04e1e4762985fb0818 | Triage

Sharing

General

Target

38253f09acc0e511f93f4bebae5f29b06b70620a126a2e04e1e4762985fb0818.exe
Size

61KB
Sample

241127-shn3hsylfy
MD5

121e47853541cf15a1249c5580840cea
SHA1

28161b7d82dfd76176f68784228dcd0cb938cd5b
SHA256

38253f09acc0e511f93f4bebae5f29b06b70620a126a2e04e1e4762985fb0818
SHA512

c1d8bc14cb413ddaeae5ecfa93ef2f7faacd089e609f56a1fbc5c87f83e6e6c7660508f1bb707d007d0e21856abf82857d39eb119effe63ea9b31c567f23b9c3
SSDEEP

1536:Id9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5/:4dseIOMEZEyFjEOFqTiQmil/5/

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  38253f09acc0e511f93f4bebae5f29b06b70620a126a2e04e1e4762985fb0818.exe
- Size
  
  61KB
- MD5
  
  121e47853541cf15a1249c5580840cea
- SHA1
  
  28161b7d82dfd76176f68784228dcd0cb938cd5b
- SHA256
  
  38253f09acc0e511f93f4bebae5f29b06b70620a126a2e04e1e4762985fb0818
- SHA512
  
  c1d8bc14cb413ddaeae5ecfa93ef2f7faacd089e609f56a1fbc5c87f83e6e6c7660508f1bb707d007d0e21856abf82857d39eb119effe63ea9b31c567f23b9c3
- SSDEEP
  
  1536:Id9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5/:4dseIOMEZEyFjEOFqTiQmil/5/
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan