neconyd | 25c92a82923530fa591ecc1d616f734d2d9cdf316e0eba9f5077b3751edad16f | Triage

Sharing

General

Target

25c92a82923530fa591ecc1d616f734d2d9cdf316e0eba9f5077b3751edad16f.exe
Size

71KB
Sample

241206-z872msyjhs
MD5

e3e2b715ff511fbbd1319f4d9be1b785
SHA1

f1ca8fd66c392b948dea7821426f49b573d221ac
SHA256

25c92a82923530fa591ecc1d616f734d2d9cdf316e0eba9f5077b3751edad16f
SHA512

2e3ea75048665116096378c6c3b629e1a26d068f60ae6d60e86ad81b33ec5aa5c5e2958249d049e320e59c3b2b32f7949b3f83fe874d5f30fd079e2b16dda754
SSDEEP

1536:Sd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbHP:idseIOMEZEyFjEOFqTiQmQDHIbHP

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  25c92a82923530fa591ecc1d616f734d2d9cdf316e0eba9f5077b3751edad16f.exe
- Size
  
  71KB
- MD5
  
  e3e2b715ff511fbbd1319f4d9be1b785
- SHA1
  
  f1ca8fd66c392b948dea7821426f49b573d221ac
- SHA256
  
  25c92a82923530fa591ecc1d616f734d2d9cdf316e0eba9f5077b3751edad16f
- SHA512
  
  2e3ea75048665116096378c6c3b629e1a26d068f60ae6d60e86ad81b33ec5aa5c5e2958249d049e320e59c3b2b32f7949b3f83fe874d5f30fd079e2b16dda754
- SSDEEP
  
  1536:Sd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbHP:idseIOMEZEyFjEOFqTiQmQDHIbHP
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan