neconyd | 3159e130e2de16f949ec82e1eedabd5ddfa0fa37ce88eb5624942179b6cce278 | Triage

Sharing

General

Target

3159e130e2de16f949ec82e1eedabd5ddfa0fa37ce88eb5624942179b6cce278N.exe
Size

64KB
Sample

241222-jaepfayqex
MD5

7315bd306db38f11c658dd7a44ab4d20
SHA1

190af71367989fa1fe68dfd39a03941224b56725
SHA256

3159e130e2de16f949ec82e1eedabd5ddfa0fa37ce88eb5624942179b6cce278
SHA512

2155faae92e7f323ec7124ae229e9eddf68653aeec6a55b27bb6715cf5fc88bd36e4418da10e2f11de66325adee3beee11fc08c2f3692d5f5f027f7e5e0f19ed
SSDEEP

768:hMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:hbIvYvZEyFKF6N4yS+AQmZcl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  3159e130e2de16f949ec82e1eedabd5ddfa0fa37ce88eb5624942179b6cce278N.exe
- Size
  
  64KB
- MD5
  
  7315bd306db38f11c658dd7a44ab4d20
- SHA1
  
  190af71367989fa1fe68dfd39a03941224b56725
- SHA256
  
  3159e130e2de16f949ec82e1eedabd5ddfa0fa37ce88eb5624942179b6cce278
- SHA512
  
  2155faae92e7f323ec7124ae229e9eddf68653aeec6a55b27bb6715cf5fc88bd36e4418da10e2f11de66325adee3beee11fc08c2f3692d5f5f027f7e5e0f19ed
- SSDEEP
  
  768:hMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:hbIvYvZEyFKF6N4yS+AQmZcl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan