neconyd | 4ff1c844fac610faa830a194e362496233d5f40bbaf4d9b47a45facfbcae020e | Triage

Sharing

General

Target

4ff1c844fac610faa830a194e362496233d5f40bbaf4d9b47a45facfbcae020e
Size

90KB
Sample

241204-1xvslsyrdj
MD5

ed576037d42534c801be3e1bf101eaa6
SHA1

a14c6e7c04a49a1fb4bbeace71fe5604990c8540
SHA256

4ff1c844fac610faa830a194e362496233d5f40bbaf4d9b47a45facfbcae020e
SHA512

45d2624e50ba4606899feb6261ab87471e6b8c93ca1a4bc4c0ce223e77fdeeb6cbf53f7c195dd022de8a9976e4e13e1b4100c2053c58f8f4be2dc61a0a8c062b
SSDEEP

768:sMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uA:sbIvYvZEyFKF6N4aS5AQmZTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  4ff1c844fac610faa830a194e362496233d5f40bbaf4d9b47a45facfbcae020e
- Size
  
  90KB
- MD5
  
  ed576037d42534c801be3e1bf101eaa6
- SHA1
  
  a14c6e7c04a49a1fb4bbeace71fe5604990c8540
- SHA256
  
  4ff1c844fac610faa830a194e362496233d5f40bbaf4d9b47a45facfbcae020e
- SHA512
  
  45d2624e50ba4606899feb6261ab87471e6b8c93ca1a4bc4c0ce223e77fdeeb6cbf53f7c195dd022de8a9976e4e13e1b4100c2053c58f8f4be2dc61a0a8c062b
- SSDEEP
  
  768:sMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uA:sbIvYvZEyFKF6N4aS5AQmZTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan