neconyd | 45b177565c212ea94ba9757283bbd2bf96c5bce3f15c64284dc256a4836f3cf5 | Triage

Sharing

General

Target

45b177565c212ea94ba9757283bbd2bf96c5bce3f15c64284dc256a4836f3cf5.exe
Size

80KB
Sample

241211-s948tatmgj
MD5

913fad08ef1c4bdebe83ede6977c983a
SHA1

caaeb213da9960d6fc267e18005a986196b2da3b
SHA256

45b177565c212ea94ba9757283bbd2bf96c5bce3f15c64284dc256a4836f3cf5
SHA512

4e423e470f9738725a558c184f401a0b9e656b2d50e86e38da94c63d4db1e0ab229e9ca6860bdbbe1f55c6fc76090ff6dad5ce849d7d40045a196fd46874fb41
SSDEEP

768:nfMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAa:nfbIvYvZEyFKF6N4yS+AQmZTl/5C

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  45b177565c212ea94ba9757283bbd2bf96c5bce3f15c64284dc256a4836f3cf5.exe
- Size
  
  80KB
- MD5
  
  913fad08ef1c4bdebe83ede6977c983a
- SHA1
  
  caaeb213da9960d6fc267e18005a986196b2da3b
- SHA256
  
  45b177565c212ea94ba9757283bbd2bf96c5bce3f15c64284dc256a4836f3cf5
- SHA512
  
  4e423e470f9738725a558c184f401a0b9e656b2d50e86e38da94c63d4db1e0ab229e9ca6860bdbbe1f55c6fc76090ff6dad5ce849d7d40045a196fd46874fb41
- SSDEEP
  
  768:nfMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAa:nfbIvYvZEyFKF6N4yS+AQmZTl/5C
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan