neconyd | 6ad1e780eaf23d117e9aac7400900fcf19f4fc83f8a64492a0e942886b143af9 | Triage

Sharing

General

Target

6ad1e780eaf23d117e9aac7400900fcf19f4fc83f8a64492a0e942886b143af9
Size

88KB
Sample

241223-13f7eatkbm
MD5

f4fc90fbccd049176e76e4ac9470c4ce
SHA1

990e169ef96d575880fc9919dbd529a1bb418060
SHA256

6ad1e780eaf23d117e9aac7400900fcf19f4fc83f8a64492a0e942886b143af9
SHA512

fb986df49e79a46e09af823ffdc2acdea4ec87d163372192183f0083b550e867ce366b910cc2ad4a2ac6f67a20e54595c27317ad133ae52ce71184d55646bdf7
SSDEEP

1536:od9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5R:YdseIOMEZEyFjEOFqTiQm5l/5R

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6ad1e780eaf23d117e9aac7400900fcf19f4fc83f8a64492a0e942886b143af9
- Size
  
  88KB
- MD5
  
  f4fc90fbccd049176e76e4ac9470c4ce
- SHA1
  
  990e169ef96d575880fc9919dbd529a1bb418060
- SHA256
  
  6ad1e780eaf23d117e9aac7400900fcf19f4fc83f8a64492a0e942886b143af9
- SHA512
  
  fb986df49e79a46e09af823ffdc2acdea4ec87d163372192183f0083b550e867ce366b910cc2ad4a2ac6f67a20e54595c27317ad133ae52ce71184d55646bdf7
- SSDEEP
  
  1536:od9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5R:YdseIOMEZEyFjEOFqTiQm5l/5R
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan