neconyd | 4ed3313db87e3ba946465934c3d69b8cb8112f72719f4f55bd6a88c1a40ff539 | Triage

Sharing

General

Target

4ed3313db87e3ba946465934c3d69b8cb8112f72719f4f55bd6a88c1a40ff539N.exe
Size

84KB
Sample

241203-31616awqbk
MD5

14cb82b109c6bde06ae07e9bf4888e80
SHA1

716e730b32fc9e86f46301e34ea003931d4c183c
SHA256

4ed3313db87e3ba946465934c3d69b8cb8112f72719f4f55bd6a88c1a40ff539
SHA512

df943936d20cdafe39b25bdedef83acadac97f04057a85c03f6ac62b1b63c9b108713a78ccc1a6bbb2947eb2783f672f3184ffafb5dfec4bf2a6f575031bdbb1
SSDEEP

1536:zd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:zdseIOMEZEyFjEOFqTiQm5l/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  4ed3313db87e3ba946465934c3d69b8cb8112f72719f4f55bd6a88c1a40ff539N.exe
- Size
  
  84KB
- MD5
  
  14cb82b109c6bde06ae07e9bf4888e80
- SHA1
  
  716e730b32fc9e86f46301e34ea003931d4c183c
- SHA256
  
  4ed3313db87e3ba946465934c3d69b8cb8112f72719f4f55bd6a88c1a40ff539
- SHA512
  
  df943936d20cdafe39b25bdedef83acadac97f04057a85c03f6ac62b1b63c9b108713a78ccc1a6bbb2947eb2783f672f3184ffafb5dfec4bf2a6f575031bdbb1
- SSDEEP
  
  1536:zd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:zdseIOMEZEyFjEOFqTiQm5l/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan