neconyd | b7e0fd4ea85be35f101afa84e8fa05112821dcffc32d0131cc203b368b5d5674 | Triage

Sharing

General

Target

b7e0fd4ea85be35f101afa84e8fa05112821dcffc32d0131cc203b368b5d5674.exe
Size

90KB
Sample

241206-pg4j2axjdx
MD5

7af9b5ceda1e9d155668a9e6008d3b59
SHA1

083e8c8c047248bfa49b0a74024f2564074ceef6
SHA256

b7e0fd4ea85be35f101afa84e8fa05112821dcffc32d0131cc203b368b5d5674
SHA512

551147b5165da5a5f9312cdc7a45b57377fee556207ac393753e02178c8ec5c4bfa30a30d0f3559bb19fc0a664071ca377d0484ee792045eb8258c6e141bdfa9
SSDEEP

768:UMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uA+:UbIvYvZEyFKF6N4aS5AQmZTl/5W

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  b7e0fd4ea85be35f101afa84e8fa05112821dcffc32d0131cc203b368b5d5674.exe
- Size
  
  90KB
- MD5
  
  7af9b5ceda1e9d155668a9e6008d3b59
- SHA1
  
  083e8c8c047248bfa49b0a74024f2564074ceef6
- SHA256
  
  b7e0fd4ea85be35f101afa84e8fa05112821dcffc32d0131cc203b368b5d5674
- SHA512
  
  551147b5165da5a5f9312cdc7a45b57377fee556207ac393753e02178c8ec5c4bfa30a30d0f3559bb19fc0a664071ca377d0484ee792045eb8258c6e141bdfa9
- SSDEEP
  
  768:UMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uA+:UbIvYvZEyFKF6N4aS5AQmZTl/5W
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan