neconyd | 80005597d6f693567b7d051e2fcecb95d282f55b20a24d91426a25f10c559ef8 | Triage

Sharing

General

Target

80005597d6f693567b7d051e2fcecb95d282f55b20a24d91426a25f10c559ef8N.exe
Size

84KB
Sample

241130-kgy74azjgz
MD5

943ac921d81ca9c1a1ccc0a75b8796c0
SHA1

6df556ff60b34b8ab6a9a6b3656c6058aafaf2df
SHA256

80005597d6f693567b7d051e2fcecb95d282f55b20a24d91426a25f10c559ef8
SHA512

87d6ae8df933e97fddcf8fb4a0dd7c29117037cf5177cdfaaa19e11348e5600dae6e2e71b7a57402fdee94e45830c82ba52ea14ab1b0bbca6bf16747a6106b6c
SSDEEP

1536:Kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:KdseIOMEZEyFjEOFqTiQm5l/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  80005597d6f693567b7d051e2fcecb95d282f55b20a24d91426a25f10c559ef8N.exe
- Size
  
  84KB
- MD5
  
  943ac921d81ca9c1a1ccc0a75b8796c0
- SHA1
  
  6df556ff60b34b8ab6a9a6b3656c6058aafaf2df
- SHA256
  
  80005597d6f693567b7d051e2fcecb95d282f55b20a24d91426a25f10c559ef8
- SHA512
  
  87d6ae8df933e97fddcf8fb4a0dd7c29117037cf5177cdfaaa19e11348e5600dae6e2e71b7a57402fdee94e45830c82ba52ea14ab1b0bbca6bf16747a6106b6c
- SSDEEP
  
  1536:Kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:KdseIOMEZEyFjEOFqTiQm5l/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan