neconyd | bc70b38d36135c7bff0caf0e97530ee0cc456c519fbfd7ec5d50f65004c56022 | Triage

Sharing

General

Target

bc70b38d36135c7bff0caf0e97530ee0cc456c519fbfd7ec5d50f65004c56022N.exe
Size

62KB
Sample

241201-amn9zaznaw
MD5

b8d81c6c19f8790104089e0387dcf070
SHA1

baacf52d869f94b73e2d10b75f1650b458207b8a
SHA256

bc70b38d36135c7bff0caf0e97530ee0cc456c519fbfd7ec5d50f65004c56022
SHA512

08b11bb8ec067b01751c3e294423b152758b82f8b8c8bfa7190492c91e775532c98cea369d351138a1cc9b8cd808a2bcf3651df5c6d724ecf322be47ceffe67a
SSDEEP

768:NMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uA:NbIvYvZEyFKF6N4yS+AQmZtl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  bc70b38d36135c7bff0caf0e97530ee0cc456c519fbfd7ec5d50f65004c56022N.exe
- Size
  
  62KB
- MD5
  
  b8d81c6c19f8790104089e0387dcf070
- SHA1
  
  baacf52d869f94b73e2d10b75f1650b458207b8a
- SHA256
  
  bc70b38d36135c7bff0caf0e97530ee0cc456c519fbfd7ec5d50f65004c56022
- SHA512
  
  08b11bb8ec067b01751c3e294423b152758b82f8b8c8bfa7190492c91e775532c98cea369d351138a1cc9b8cd808a2bcf3651df5c6d724ecf322be47ceffe67a
- SSDEEP
  
  768:NMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uA:NbIvYvZEyFKF6N4yS+AQmZtl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan