neconyd | c2b062b7f29fd4feaa2066c8559023b783bb49b598c9d8524383cc695dad7667 | Triage

Sharing

General

Target

c2b062b7f29fd4feaa2066c8559023b783bb49b598c9d8524383cc695dad7667.exe
Size

62KB
Sample

241211-pnbslaxjep
MD5

aedb8c1eb7c3afae98c4ac358c7f9db6
SHA1

22de0468ec542fcb302cb46a1314ddbd6c1ffdef
SHA256

c2b062b7f29fd4feaa2066c8559023b783bb49b598c9d8524383cc695dad7667
SHA512

a7c115d7c52565e9f9d4843042df3246f4fbb5f7cbcabacd8edd8ffd99a76e880acdcb2f047af03bd7e77f2e420ff3f8649daa8a2fe82f26a2b7f5b5772a7582
SSDEEP

768:IMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uAH:IbIvYvZEyFKF6N4yS+AQmZtl/5f

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  c2b062b7f29fd4feaa2066c8559023b783bb49b598c9d8524383cc695dad7667.exe
- Size
  
  62KB
- MD5
  
  aedb8c1eb7c3afae98c4ac358c7f9db6
- SHA1
  
  22de0468ec542fcb302cb46a1314ddbd6c1ffdef
- SHA256
  
  c2b062b7f29fd4feaa2066c8559023b783bb49b598c9d8524383cc695dad7667
- SHA512
  
  a7c115d7c52565e9f9d4843042df3246f4fbb5f7cbcabacd8edd8ffd99a76e880acdcb2f047af03bd7e77f2e420ff3f8649daa8a2fe82f26a2b7f5b5772a7582
- SSDEEP
  
  768:IMEIvFGvZEr8LFK0ic46N47eSdYAHwmZQp6JXXlaa5uAH:IbIvYvZEyFKF6N4yS+AQmZtl/5f
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan