neconyd | 0b71dbb870aa8f4208b441bc9ba285d88f13abec2cb843a5224edc3782c81d73 | Triage

Sharing

General

Target

0b71dbb870aa8f4208b441bc9ba285d88f13abec2cb843a5224edc3782c81d73N.exe
Size

80KB
Sample

241204-yryk7strfj
MD5

eb683a7ff8d2ae492645d4de11ee4920
SHA1

fe6ca2f4565f85594762cba22c6fce71b245189e
SHA256

0b71dbb870aa8f4208b441bc9ba285d88f13abec2cb843a5224edc3782c81d73
SHA512

43aa80edb33741351df8d19447dd3ad7b7f24fc25404466e501f72b655b230dd0c9a5ca9b3bc1afb4dc4aa6e7d14999bffa7c77bb233787d60242063e71b6b04
SSDEEP

1536:Gd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzz:+dseIOMEZEyFjEOFqTiQmOl/5xPvw3

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  0b71dbb870aa8f4208b441bc9ba285d88f13abec2cb843a5224edc3782c81d73N.exe
- Size
  
  80KB
- MD5
  
  eb683a7ff8d2ae492645d4de11ee4920
- SHA1
  
  fe6ca2f4565f85594762cba22c6fce71b245189e
- SHA256
  
  0b71dbb870aa8f4208b441bc9ba285d88f13abec2cb843a5224edc3782c81d73
- SHA512
  
  43aa80edb33741351df8d19447dd3ad7b7f24fc25404466e501f72b655b230dd0c9a5ca9b3bc1afb4dc4aa6e7d14999bffa7c77bb233787d60242063e71b6b04
- SSDEEP
  
  1536:Gd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzz:+dseIOMEZEyFjEOFqTiQmOl/5xPvw3
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan