neconyd | a4cc12e849378f37d83d407ddea3009dd734d4406a28477e75e38ce197f09e77 | Triage

Sharing

General

Target

a4cc12e849378f37d83d407ddea3009dd734d4406a28477e75e38ce197f09e77N.exe
Size

71KB
Sample

241203-x58snavqgm
MD5

49295918fe9b4c17289510b9fcbf65e0
SHA1

20e7708c899e8a5f417c0cca1fa87555254ef9a8
SHA256

a4cc12e849378f37d83d407ddea3009dd734d4406a28477e75e38ce197f09e77
SHA512

1ad8129438056e1af8ed1e529b293b7710ae511fc0d263f3425a93b14921516246a02238af0c70bb5986c83ae3f43a051bd56f2f9bc2eb067c5ed8c56ceb6706
SSDEEP

1536:gd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:AdseIOMEZEyFjEOFqTiQmQDHIbH

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  a4cc12e849378f37d83d407ddea3009dd734d4406a28477e75e38ce197f09e77N.exe
- Size
  
  71KB
- MD5
  
  49295918fe9b4c17289510b9fcbf65e0
- SHA1
  
  20e7708c899e8a5f417c0cca1fa87555254ef9a8
- SHA256
  
  a4cc12e849378f37d83d407ddea3009dd734d4406a28477e75e38ce197f09e77
- SHA512
  
  1ad8129438056e1af8ed1e529b293b7710ae511fc0d263f3425a93b14921516246a02238af0c70bb5986c83ae3f43a051bd56f2f9bc2eb067c5ed8c56ceb6706
- SSDEEP
  
  1536:gd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:AdseIOMEZEyFjEOFqTiQmQDHIbH
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan