neconyd | a47eae4ac9a5830d4bb2bdc2c69d59576a15123aa85e3b80977437682e50d301 | Triage

Sharing

General

Target

a47eae4ac9a5830d4bb2bdc2c69d59576a15123aa85e3b80977437682e50d301N.exe
Size

80KB
Sample

241204-a3afraspdx
MD5

c98b4138691d61c56f49eb3bcc913440
SHA1

71f40ac919dbc9f20cee2e490dd450a528133416
SHA256

a47eae4ac9a5830d4bb2bdc2c69d59576a15123aa85e3b80977437682e50d301
SHA512

f3d9d229a57f8caa12e29e956ef6e1d216cf181055dbcad6b847fdbec8197e3ee120f15922b152a8cfe1b54fbd28f573878d63a7228bd6f2af21ced2cd8d3b7b
SSDEEP

1536:fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzT:XdseIOMEZEyFjEOFqTiQmOl/5xPvwX

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  a47eae4ac9a5830d4bb2bdc2c69d59576a15123aa85e3b80977437682e50d301N.exe
- Size
  
  80KB
- MD5
  
  c98b4138691d61c56f49eb3bcc913440
- SHA1
  
  71f40ac919dbc9f20cee2e490dd450a528133416
- SHA256
  
  a47eae4ac9a5830d4bb2bdc2c69d59576a15123aa85e3b80977437682e50d301
- SHA512
  
  f3d9d229a57f8caa12e29e956ef6e1d216cf181055dbcad6b847fdbec8197e3ee120f15922b152a8cfe1b54fbd28f573878d63a7228bd6f2af21ced2cd8d3b7b
- SSDEEP
  
  1536:fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzT:XdseIOMEZEyFjEOFqTiQmOl/5xPvwX
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan