neconyd | e839b5540bda37fd55d467dbb081b909f827b0ed85b3f551559d3ae802b279cf | Triage

Sharing

General

Target

e839b5540bda37fd55d467dbb081b909f827b0ed85b3f551559d3ae802b279cf.exe
Size

84KB
Sample

241205-fnjc1awkfp
MD5

c394bcf1e6699c7f12c929964d80dbbd
SHA1

b2c7dd720e7d03e56bb5764e5c446cf6d97ed7ce
SHA256

e839b5540bda37fd55d467dbb081b909f827b0ed85b3f551559d3ae802b279cf
SHA512

e5695803cce0aa43a15fc083cacf741253b980cfb54c5f89d16c547b72e414365336971f3ca16a8f523cf2e92f8e40f7e030ab98084b86f0b5fc5cb371402ef1
SSDEEP

768:LMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAd:LbIvYvZEyFKF6N4yS+AQmZTl/5F

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  e839b5540bda37fd55d467dbb081b909f827b0ed85b3f551559d3ae802b279cf.exe
- Size
  
  84KB
- MD5
  
  c394bcf1e6699c7f12c929964d80dbbd
- SHA1
  
  b2c7dd720e7d03e56bb5764e5c446cf6d97ed7ce
- SHA256
  
  e839b5540bda37fd55d467dbb081b909f827b0ed85b3f551559d3ae802b279cf
- SHA512
  
  e5695803cce0aa43a15fc083cacf741253b980cfb54c5f89d16c547b72e414365336971f3ca16a8f523cf2e92f8e40f7e030ab98084b86f0b5fc5cb371402ef1
- SSDEEP
  
  768:LMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAd:LbIvYvZEyFKF6N4yS+AQmZTl/5F
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan