neconyd | f69cc28aea74266ee354ca8bf23a046d3f7b3c61285b7864fc08a41fc45de990 | Triage

Sharing

General

Target

f69cc28aea74266ee354ca8bf23a046d3f7b3c61285b7864fc08a41fc45de990
Size

89KB
Sample

241221-hkstdawjaq
MD5

ba2d45f4f924dd7d4cfe2157134938c5
SHA1

eb14ea5f387dfb8e580035b6f1b9d1622feaea60
SHA256

f69cc28aea74266ee354ca8bf23a046d3f7b3c61285b7864fc08a41fc45de990
SHA512

65ee7d3abb9da0489e47e89d0d6724b7fc5ea0937d1863fa6f111013a22294b1176ab4b371fc95db539f45cadf43e69c9a1c6a47a246268a356e8e70d641283c
SSDEEP

768:rMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA1:rbIvYvZEyFKF6N4yS+AQmZTl/5d

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  f69cc28aea74266ee354ca8bf23a046d3f7b3c61285b7864fc08a41fc45de990
- Size
  
  89KB
- MD5
  
  ba2d45f4f924dd7d4cfe2157134938c5
- SHA1
  
  eb14ea5f387dfb8e580035b6f1b9d1622feaea60
- SHA256
  
  f69cc28aea74266ee354ca8bf23a046d3f7b3c61285b7864fc08a41fc45de990
- SHA512
  
  65ee7d3abb9da0489e47e89d0d6724b7fc5ea0937d1863fa6f111013a22294b1176ab4b371fc95db539f45cadf43e69c9a1c6a47a246268a356e8e70d641283c
- SSDEEP
  
  768:rMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA1:rbIvYvZEyFKF6N4yS+AQmZTl/5d
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan