neconyd | 93ffad7d8db9995b3a0024627766a6d54664acbd2bfb1e50ae2665f73384b65b | Triage

Sharing

General

Target

93ffad7d8db9995b3a0024627766a6d54664acbd2bfb1e50ae2665f73384b65b.exe
Size

80KB
Sample

241203-yww8ya1rbt
MD5

8bf04a74835812f292459e324ebc702a
SHA1

3177db2fd5634e3969240acfaaa52abcbdb5e3dc
SHA256

93ffad7d8db9995b3a0024627766a6d54664acbd2bfb1e50ae2665f73384b65b
SHA512

c920a788bc4549e004f3f80a328208ee37ced69bb9f6e2817f5ec731a1a975c243316fa873c52ee248c3fcb2ab3318f7fe23c51398d884494dc234edf749134a
SSDEEP

1536:Pd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzp:ndseIOMEZEyFjEOFqTiQmOl/5xPvw1

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  93ffad7d8db9995b3a0024627766a6d54664acbd2bfb1e50ae2665f73384b65b.exe
- Size
  
  80KB
- MD5
  
  8bf04a74835812f292459e324ebc702a
- SHA1
  
  3177db2fd5634e3969240acfaaa52abcbdb5e3dc
- SHA256
  
  93ffad7d8db9995b3a0024627766a6d54664acbd2bfb1e50ae2665f73384b65b
- SHA512
  
  c920a788bc4549e004f3f80a328208ee37ced69bb9f6e2817f5ec731a1a975c243316fa873c52ee248c3fcb2ab3318f7fe23c51398d884494dc234edf749134a
- SSDEEP
  
  1536:Pd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzp:ndseIOMEZEyFjEOFqTiQmOl/5xPvw1
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan