neconyd | c979ab1567810bcdbff7ed00bc21ea826933b19b7ac4b95e558f7454f3082922 | Triage

Sharing

General

Target

c979ab1567810bcdbff7ed00bc21ea826933b19b7ac4b95e558f7454f3082922N.exe
Size

90KB
Sample

241202-z8e1vstkh1
MD5

15c958471557cebf44080a68531977c0
SHA1

5595f1f3f31fc2642fcc1d4c86be1966084b3939
SHA256

c979ab1567810bcdbff7ed00bc21ea826933b19b7ac4b95e558f7454f3082922
SHA512

8462645de46da2bb5d91d0c2b1777f5fd628ea2bb4fe84c754fe6cdcdfcac67866038be9516207558ecd5369347b840e2f724fb60b99c590c9110a07ca1ad55a
SSDEEP

768:+MEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uA:+bIvYvZEyFKF6N4aS5AQmZTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  c979ab1567810bcdbff7ed00bc21ea826933b19b7ac4b95e558f7454f3082922N.exe
- Size
  
  90KB
- MD5
  
  15c958471557cebf44080a68531977c0
- SHA1
  
  5595f1f3f31fc2642fcc1d4c86be1966084b3939
- SHA256
  
  c979ab1567810bcdbff7ed00bc21ea826933b19b7ac4b95e558f7454f3082922
- SHA512
  
  8462645de46da2bb5d91d0c2b1777f5fd628ea2bb4fe84c754fe6cdcdfcac67866038be9516207558ecd5369347b840e2f724fb60b99c590c9110a07ca1ad55a
- SSDEEP
  
  768:+MEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uA:+bIvYvZEyFKF6N4aS5AQmZTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan