neconyd | 2029d4e150d9c92627f57e5a8b76410fb05a3586b89c0d71bc4500f37a66d377 | Triage

Sharing

General

Target

2029d4e150d9c92627f57e5a8b76410fb05a3586b89c0d71bc4500f37a66d377.exe
Size

62KB
Sample

241205-tzjd2aymdk
MD5

13058928627ee64bcf607d67cb75f148
SHA1

8355da69de99e0c9716981fba0826f4cd0b61803
SHA256

2029d4e150d9c92627f57e5a8b76410fb05a3586b89c0d71bc4500f37a66d377
SHA512

af3d91fdbc5244fd8cc5c9386de32236bfd56ed2be312de8cbfdc3a0eb2762525c9542108b202583604fc9bf706c8114f10719e8aebc763c30eeedfb9f4037c1
SSDEEP

768:oMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uAF:obIvYvZEyFKF6N4yS+AQmZtl/5N

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  2029d4e150d9c92627f57e5a8b76410fb05a3586b89c0d71bc4500f37a66d377.exe
- Size
  
  62KB
- MD5
  
  13058928627ee64bcf607d67cb75f148
- SHA1
  
  8355da69de99e0c9716981fba0826f4cd0b61803
- SHA256
  
  2029d4e150d9c92627f57e5a8b76410fb05a3586b89c0d71bc4500f37a66d377
- SHA512
  
  af3d91fdbc5244fd8cc5c9386de32236bfd56ed2be312de8cbfdc3a0eb2762525c9542108b202583604fc9bf706c8114f10719e8aebc763c30eeedfb9f4037c1
- SSDEEP
  
  768:oMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uAF:obIvYvZEyFKF6N4yS+AQmZtl/5N
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan