neconyd | fb72a92a19fbd7fafc5cf2bf230c7b8187efd5d5dcbc0ca431d80677b8bf3f10 | Triage

Sharing

General

Target

fb72a92a19fbd7fafc5cf2bf230c7b8187efd5d5dcbc0ca431d80677b8bf3f10N.exe
Size

64KB
Sample

241208-fpb1bayqbp
MD5

6db5e657551a718e029cf9d8095b49e0
SHA1

43a66b86b300ab632ad08926b92a4ad95998c000
SHA256

fb72a92a19fbd7fafc5cf2bf230c7b8187efd5d5dcbc0ca431d80677b8bf3f10
SHA512

4ccdfecee3c93823584f5cf9c101b0658320f555e6bc3c54c9b106f56191b91249d2d7ec4460f21ce24db8fa72498725c4390f1cdd52195e3fc9eda76a22fa87
SSDEEP

768:kMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:kbIvYvZEyFKF6N4yS+AQmZcl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  fb72a92a19fbd7fafc5cf2bf230c7b8187efd5d5dcbc0ca431d80677b8bf3f10N.exe
- Size
  
  64KB
- MD5
  
  6db5e657551a718e029cf9d8095b49e0
- SHA1
  
  43a66b86b300ab632ad08926b92a4ad95998c000
- SHA256
  
  fb72a92a19fbd7fafc5cf2bf230c7b8187efd5d5dcbc0ca431d80677b8bf3f10
- SHA512
  
  4ccdfecee3c93823584f5cf9c101b0658320f555e6bc3c54c9b106f56191b91249d2d7ec4460f21ce24db8fa72498725c4390f1cdd52195e3fc9eda76a22fa87
- SSDEEP
  
  768:kMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:kbIvYvZEyFKF6N4yS+AQmZcl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan