neconyd | 665c2be98a550b3af4109f872868f458e898fb0e09832df16a05db867899ef6d | Triage

Sharing

General

Target

665c2be98a550b3af4109f872868f458e898fb0e09832df16a05db867899ef6dN.exe
Size

89KB
Sample

241225-3y76fa1qev
MD5

8f079325c4c70893a16e983d451acb70
SHA1

3c4b83e47fa93b02f0bf42c04a0251a4da6c23b1
SHA256

665c2be98a550b3af4109f872868f458e898fb0e09832df16a05db867899ef6d
SHA512

4f7a00d16710af3216e7a9e953e33b8ce280cf0d09a8769d9f78801d36c46bfd488e348e67c9bee4217a43d87e5c62dcdf859706356a3043bc0e84a12a7a5a22
SSDEEP

768:JMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA/:JbIvYvZEyFKF6N4yS+AQmZTl/53

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  665c2be98a550b3af4109f872868f458e898fb0e09832df16a05db867899ef6dN.exe
- Size
  
  89KB
- MD5
  
  8f079325c4c70893a16e983d451acb70
- SHA1
  
  3c4b83e47fa93b02f0bf42c04a0251a4da6c23b1
- SHA256
  
  665c2be98a550b3af4109f872868f458e898fb0e09832df16a05db867899ef6d
- SHA512
  
  4f7a00d16710af3216e7a9e953e33b8ce280cf0d09a8769d9f78801d36c46bfd488e348e67c9bee4217a43d87e5c62dcdf859706356a3043bc0e84a12a7a5a22
- SSDEEP
  
  768:JMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA/:JbIvYvZEyFKF6N4yS+AQmZTl/53
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan