neconyd | ccab41d7ee381f80668f53c9dbf43fa136898239c2018e8782629349b2ce5737 | Triage

Sharing

General

Target

ccab41d7ee381f80668f53c9dbf43fa136898239c2018e8782629349b2ce5737.exe
Size

90KB
Sample

241204-h26rkasmhj
MD5

7febbbf1966e907f2d6a1bf15eae6bde
SHA1

94b861a98d91c5190cfa6c2b2ae03f707fe075a3
SHA256

ccab41d7ee381f80668f53c9dbf43fa136898239c2018e8782629349b2ce5737
SHA512

da866cf120eda097044694800ec09faec6fc248abb3a97dc11d665a6ac3ef75eb3445b8d7928d6dfd79f46923e4c38f2da9288377007210223c27081b71e59ae
SSDEEP

768:NMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAe:NbIvYvZEyFKF6N4aS5AQmZTl/52

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  ccab41d7ee381f80668f53c9dbf43fa136898239c2018e8782629349b2ce5737.exe
- Size
  
  90KB
- MD5
  
  7febbbf1966e907f2d6a1bf15eae6bde
- SHA1
  
  94b861a98d91c5190cfa6c2b2ae03f707fe075a3
- SHA256
  
  ccab41d7ee381f80668f53c9dbf43fa136898239c2018e8782629349b2ce5737
- SHA512
  
  da866cf120eda097044694800ec09faec6fc248abb3a97dc11d665a6ac3ef75eb3445b8d7928d6dfd79f46923e4c38f2da9288377007210223c27081b71e59ae
- SSDEEP
  
  768:NMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAe:NbIvYvZEyFKF6N4aS5AQmZTl/52
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan