neconyd | e3dd5ed8129465724484351c339a0d79b6f856b0d52d81bd41011186294389a5 | Triage

Sharing

General

Target

e3dd5ed8129465724484351c339a0d79b6f856b0d52d81bd41011186294389a5.exe
Size

71KB
Sample

241226-renrxaxke1
MD5

fc338fd9432acd233b778aead852fecd
SHA1

caff8bcd56dfcfc463be596d3be16a6778811c33
SHA256

e3dd5ed8129465724484351c339a0d79b6f856b0d52d81bd41011186294389a5
SHA512

9a5cb063018e4078f67bd2d9e3f98aa7e4c8c6557dabf655ca8905bfb2a5999b116316bbee5431aa807b465dba121f8e8d58c38f851a277716f8a6974b1edbd4
SSDEEP

1536:Rd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH3:hdseIOMEZEyFjEOFqTiQmQDHIbH3

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  e3dd5ed8129465724484351c339a0d79b6f856b0d52d81bd41011186294389a5.exe
- Size
  
  71KB
- MD5
  
  fc338fd9432acd233b778aead852fecd
- SHA1
  
  caff8bcd56dfcfc463be596d3be16a6778811c33
- SHA256
  
  e3dd5ed8129465724484351c339a0d79b6f856b0d52d81bd41011186294389a5
- SHA512
  
  9a5cb063018e4078f67bd2d9e3f98aa7e4c8c6557dabf655ca8905bfb2a5999b116316bbee5431aa807b465dba121f8e8d58c38f851a277716f8a6974b1edbd4
- SSDEEP
  
  1536:Rd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH3:hdseIOMEZEyFjEOFqTiQmQDHIbH3
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan