neconyd | 6c2389f7e16d75ddb5c0034968282d06aadcffe0612869daf4d05335dbf01737 | Triage

Sharing

General

Target

6c2389f7e16d75ddb5c0034968282d06aadcffe0612869daf4d05335dbf01737N.exe
Size

71KB
Sample

241226-mqyzsstjhv
MD5

bd559dcda44a612a74f6c1e219110db0
SHA1

0e9a08ee761b1e580581cf534094454c0329b91c
SHA256

6c2389f7e16d75ddb5c0034968282d06aadcffe0612869daf4d05335dbf01737
SHA512

f455c04cc62ec1863a59eb24a66c47b498d14ff38d08ebe8fa2ec2710dbd55f1de02de53b2c74aa1cb0e778c0ad76b80186fe8f3b0f494702c98820ab729a45a
SSDEEP

1536:cd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:kdseIOMEZEyFjEOFqTiQmQDHIbH

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6c2389f7e16d75ddb5c0034968282d06aadcffe0612869daf4d05335dbf01737N.exe
- Size
  
  71KB
- MD5
  
  bd559dcda44a612a74f6c1e219110db0
- SHA1
  
  0e9a08ee761b1e580581cf534094454c0329b91c
- SHA256
  
  6c2389f7e16d75ddb5c0034968282d06aadcffe0612869daf4d05335dbf01737
- SHA512
  
  f455c04cc62ec1863a59eb24a66c47b498d14ff38d08ebe8fa2ec2710dbd55f1de02de53b2c74aa1cb0e778c0ad76b80186fe8f3b0f494702c98820ab729a45a
- SSDEEP
  
  1536:cd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:kdseIOMEZEyFjEOFqTiQmQDHIbH
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan