neconyd | a8f67334daeebbdab3c4250a87f9b7591e22825419dce3a5793ecbaa0a722d81 | Triage

Sharing

General

Target

a8f67334daeebbdab3c4250a87f9b7591e22825419dce3a5793ecbaa0a722d81.exe
Size

84KB
Sample

241203-vqej6avlfy
MD5

2d3031ef5928ba69c69cc9d93183782f
SHA1

88ec3b7af45ba54a5fa37638005d1f11769c2d7a
SHA256

a8f67334daeebbdab3c4250a87f9b7591e22825419dce3a5793ecbaa0a722d81
SHA512

7d2d7fd0728d9511c3ae010dc241abc607a0f5e6c41dd0a93028463b7eac3f4bf26834fff34d756fd83cf9f56311b969d78cba2cd1b95017c08344db3dc58b2a
SSDEEP

768:/MEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA9:/bIvYvZEyFKF6N4yS+AQmZTl/5l

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  a8f67334daeebbdab3c4250a87f9b7591e22825419dce3a5793ecbaa0a722d81.exe
- Size
  
  84KB
- MD5
  
  2d3031ef5928ba69c69cc9d93183782f
- SHA1
  
  88ec3b7af45ba54a5fa37638005d1f11769c2d7a
- SHA256
  
  a8f67334daeebbdab3c4250a87f9b7591e22825419dce3a5793ecbaa0a722d81
- SHA512
  
  7d2d7fd0728d9511c3ae010dc241abc607a0f5e6c41dd0a93028463b7eac3f4bf26834fff34d756fd83cf9f56311b969d78cba2cd1b95017c08344db3dc58b2a
- SSDEEP
  
  768:/MEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA9:/bIvYvZEyFKF6N4yS+AQmZTl/5l
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan