neconyd | eb60f629bc961989e5bb2281d42e8d9cb23e1d5574adb2fc7873374b59a637f2 | Triage

Sharing

General

Target

eb60f629bc961989e5bb2281d42e8d9cb23e1d5574adb2fc7873374b59a637f2
Size

71KB
Sample

241229-f8f4datpdz
MD5

fed1744cabdbcd081f505619aba7ccee
SHA1

116890bc81f04855c587f98c4896397765e7df65
SHA256

eb60f629bc961989e5bb2281d42e8d9cb23e1d5574adb2fc7873374b59a637f2
SHA512

8ee8d58b710df5749867ed0dd30a65fe0ed2c4a739de377e5d827f0e29f462ee4fe1ea38918b2fd80f5a16cd7ab2f083fad3eca75f18f96ee9b14736bb233d9d
SSDEEP

1536:Rd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbHv:hdseIOMEZEyFjEOFqTiQmQDHIbHv

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  eb60f629bc961989e5bb2281d42e8d9cb23e1d5574adb2fc7873374b59a637f2
- Size
  
  71KB
- MD5
  
  fed1744cabdbcd081f505619aba7ccee
- SHA1
  
  116890bc81f04855c587f98c4896397765e7df65
- SHA256
  
  eb60f629bc961989e5bb2281d42e8d9cb23e1d5574adb2fc7873374b59a637f2
- SHA512
  
  8ee8d58b710df5749867ed0dd30a65fe0ed2c4a739de377e5d827f0e29f462ee4fe1ea38918b2fd80f5a16cd7ab2f083fad3eca75f18f96ee9b14736bb233d9d
- SSDEEP
  
  1536:Rd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbHv:hdseIOMEZEyFjEOFqTiQmQDHIbHv
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan