neconyd | 9e6244ca8f170f895710dafc6c1c133d21315e2ae53870a6e7485bed11817c0b | Triage

Sharing

General

Target

9e6244ca8f170f895710dafc6c1c133d21315e2ae53870a6e7485bed11817c0bN.exe
Size

88KB
Sample

241219-c96tmstpbv
MD5

8711594e145da589ed6e749628a02440
SHA1

81972941e5cc4d0eb97fdfcac6e300545f68786f
SHA256

9e6244ca8f170f895710dafc6c1c133d21315e2ae53870a6e7485bed11817c0b
SHA512

9408076bf2001750e83b02e6af100dc681d194acb0eb98dcecb5d38618ad77f3c20bae2ae791630c60d229c3122e0cf6ff49b2a10c6102efaf6cf15c233e805e
SSDEEP

1536:md9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5R:edseIOMEZEyFjEOFqTiQm5l/5R

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  9e6244ca8f170f895710dafc6c1c133d21315e2ae53870a6e7485bed11817c0bN.exe
- Size
  
  88KB
- MD5
  
  8711594e145da589ed6e749628a02440
- SHA1
  
  81972941e5cc4d0eb97fdfcac6e300545f68786f
- SHA256
  
  9e6244ca8f170f895710dafc6c1c133d21315e2ae53870a6e7485bed11817c0b
- SHA512
  
  9408076bf2001750e83b02e6af100dc681d194acb0eb98dcecb5d38618ad77f3c20bae2ae791630c60d229c3122e0cf6ff49b2a10c6102efaf6cf15c233e805e
- SSDEEP
  
  1536:md9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5R:edseIOMEZEyFjEOFqTiQm5l/5R
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan