neconyd | ae5f6a956cafbc0a5fca0abc70bb68797e0551b78b70839a17e213816048113b | Triage

Sharing

General

Target

ae5f6a956cafbc0a5fca0abc70bb68797e0551b78b70839a17e213816048113bN.exe
Size

61KB
Sample

241208-ag2m4sxjhk
MD5

d1a84d884bbfaead7b91f455bd5a4b30
SHA1

a3fecc074bda03497901af4ca2f5aa2af7714bfb
SHA256

ae5f6a956cafbc0a5fca0abc70bb68797e0551b78b70839a17e213816048113b
SHA512

23fc7fc73ab018fc73da7afa0af24570c94d85d63f1ee02d4a6fe555ae30cb2f48f9cb7633742fe839fd3063d2305fb7df507406724cf0c9ae1d2583f7688a59
SSDEEP

1536:+d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5/:mdseIOMEZEyFjEOFqTiQmil/5/

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  ae5f6a956cafbc0a5fca0abc70bb68797e0551b78b70839a17e213816048113bN.exe
- Size
  
  61KB
- MD5
  
  d1a84d884bbfaead7b91f455bd5a4b30
- SHA1
  
  a3fecc074bda03497901af4ca2f5aa2af7714bfb
- SHA256
  
  ae5f6a956cafbc0a5fca0abc70bb68797e0551b78b70839a17e213816048113b
- SHA512
  
  23fc7fc73ab018fc73da7afa0af24570c94d85d63f1ee02d4a6fe555ae30cb2f48f9cb7633742fe839fd3063d2305fb7df507406724cf0c9ae1d2583f7688a59
- SSDEEP
  
  1536:+d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5/:mdseIOMEZEyFjEOFqTiQmil/5/
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan