neconyd | 6ee0fb6728ab3f8054586aed3375af862f78ae520132a24b1058d0ef72fa325c | Triage

Sharing

General

Target

6ee0fb6728ab3f8054586aed3375af862f78ae520132a24b1058d0ef72fa325c
Size

84KB
Sample

241202-2wgd9ssrhn
MD5

ac9c173d944ca0a08bbfc1ac25f27317
SHA1

39b40b502c1dec272adc50b8b54f7b9c31d0c598
SHA256

6ee0fb6728ab3f8054586aed3375af862f78ae520132a24b1058d0ef72fa325c
SHA512

50c76bf6ba398b4604396710028f575ca95b7924e84013f884f7aa8adb5b1759ff451fa0a92bd5eec4137f1747f83c73f78f8a019ab1c409a0f07dca6cbc4fa1
SSDEEP

768:PMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:PbIvYvZEyFKF6N4yS+AQmZTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6ee0fb6728ab3f8054586aed3375af862f78ae520132a24b1058d0ef72fa325c
- Size
  
  84KB
- MD5
  
  ac9c173d944ca0a08bbfc1ac25f27317
- SHA1
  
  39b40b502c1dec272adc50b8b54f7b9c31d0c598
- SHA256
  
  6ee0fb6728ab3f8054586aed3375af862f78ae520132a24b1058d0ef72fa325c
- SHA512
  
  50c76bf6ba398b4604396710028f575ca95b7924e84013f884f7aa8adb5b1759ff451fa0a92bd5eec4137f1747f83c73f78f8a019ab1c409a0f07dca6cbc4fa1
- SSDEEP
  
  768:PMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:PbIvYvZEyFKF6N4yS+AQmZTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan