neconyd | 32f2a8dc6d14dffc3df5f6382a579e27e5df7d522f31a03ae902b3e360c525ad | Triage

Sharing

General

Target

32f2a8dc6d14dffc3df5f6382a579e27e5df7d522f31a03ae902b3e360c525ad
Size

61KB
Sample

241209-zfy82azqh1
MD5

13ebb36e596146a672c3ff8b6e08c2d4
SHA1

b2309079bdbd23463c4f60f962494b2888e5452c
SHA256

32f2a8dc6d14dffc3df5f6382a579e27e5df7d522f31a03ae902b3e360c525ad
SHA512

c9cf11d45bbd98d883069c9dcf681cc3bfe34d791809f59c1ab6a6fee6cbffe1648c3d6aebdfc028d0398990e7a4719682c0edf7c8890448c27160d2f8557c18
SSDEEP

1536:Qd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZxl/5:QdseIOMEZEyFjEOFqTiQmTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  32f2a8dc6d14dffc3df5f6382a579e27e5df7d522f31a03ae902b3e360c525ad
- Size
  
  61KB
- MD5
  
  13ebb36e596146a672c3ff8b6e08c2d4
- SHA1
  
  b2309079bdbd23463c4f60f962494b2888e5452c
- SHA256
  
  32f2a8dc6d14dffc3df5f6382a579e27e5df7d522f31a03ae902b3e360c525ad
- SHA512
  
  c9cf11d45bbd98d883069c9dcf681cc3bfe34d791809f59c1ab6a6fee6cbffe1648c3d6aebdfc028d0398990e7a4719682c0edf7c8890448c27160d2f8557c18
- SSDEEP
  
  1536:Qd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZxl/5:QdseIOMEZEyFjEOFqTiQmTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan