neconyd | 47a7dd9a9918f2623257d04ade70aeead4b3e3fa524e5e86947957e89f575c93 | Triage

Sharing

General

Target

47a7dd9a9918f2623257d04ade70aeead4b3e3fa524e5e86947957e89f575c93.exe
Size

89KB
Sample

241217-2g932a1jft
MD5

56508d214adae65be4fa674ec732a46a
SHA1

4e0bade257db52ab776262dce952b8b47ee9564d
SHA256

47a7dd9a9918f2623257d04ade70aeead4b3e3fa524e5e86947957e89f575c93
SHA512

77571d52d9b52198597d01547d4b0d8379c8364d0af0cfe9755cb5cf3d6effa1518163dc5d79a176fb61faec5024799d228818cb241e5d4f9bea7d11437c473e
SSDEEP

768:DMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAH:DbIvYvZEyFKF6N4yS+AQmZTl/5/

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  47a7dd9a9918f2623257d04ade70aeead4b3e3fa524e5e86947957e89f575c93.exe
- Size
  
  89KB
- MD5
  
  56508d214adae65be4fa674ec732a46a
- SHA1
  
  4e0bade257db52ab776262dce952b8b47ee9564d
- SHA256
  
  47a7dd9a9918f2623257d04ade70aeead4b3e3fa524e5e86947957e89f575c93
- SHA512
  
  77571d52d9b52198597d01547d4b0d8379c8364d0af0cfe9755cb5cf3d6effa1518163dc5d79a176fb61faec5024799d228818cb241e5d4f9bea7d11437c473e
- SSDEEP
  
  768:DMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAH:DbIvYvZEyFKF6N4yS+AQmZTl/5/
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan