neconyd | 3e868c29818b585c04a42d756f168b65146152842d942f2a84f37a18299bc57b | Triage

Sharing

General

Target

3e868c29818b585c04a42d756f168b65146152842d942f2a84f37a18299bc57bN.exe
Size

89KB
Sample

241226-pqra3awkam
MD5

8c90eec341cae53ddc095f6284e909b0
SHA1

95b69b9bb5968b7f9edff459addd8f3be240e4b8
SHA256

3e868c29818b585c04a42d756f168b65146152842d942f2a84f37a18299bc57b
SHA512

3f93b3b650faf489d3aaf6e3a04a5ce2d124b269a377f167c12346184c346df74ec2a69dc88b1ef76858f6df2e73cddbe62f0d79bbc399b4b6a3f952c466c5e9
SSDEEP

768:pMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA1:pbIvYvZEyFKF6N4yS+AQmZTl/5d

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  3e868c29818b585c04a42d756f168b65146152842d942f2a84f37a18299bc57bN.exe
- Size
  
  89KB
- MD5
  
  8c90eec341cae53ddc095f6284e909b0
- SHA1
  
  95b69b9bb5968b7f9edff459addd8f3be240e4b8
- SHA256
  
  3e868c29818b585c04a42d756f168b65146152842d942f2a84f37a18299bc57b
- SHA512
  
  3f93b3b650faf489d3aaf6e3a04a5ce2d124b269a377f167c12346184c346df74ec2a69dc88b1ef76858f6df2e73cddbe62f0d79bbc399b4b6a3f952c466c5e9
- SSDEEP
  
  768:pMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA1:pbIvYvZEyFKF6N4yS+AQmZTl/5d
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan