neconyd | 1daab24ccad698e9414bfb3c59630a4508d483999aaf27bc7b24c99b9b3ba156 | Triage

Sharing

General

Target

1daab24ccad698e9414bfb3c59630a4508d483999aaf27bc7b24c99b9b3ba156.exe
Size

72KB
Sample

241230-wdh79atrat
MD5

75f834dcadb15ded5a93b83dea92f2a9
SHA1

1c9a84eb72387c06b5ced9f79fc3133126cdd0a8
SHA256

1daab24ccad698e9414bfb3c59630a4508d483999aaf27bc7b24c99b9b3ba156
SHA512

6330659e957041092242056baa9e652dcd9bec7630de34e291512dec678bb3bfa3f9e461baf43c6c19ecf280cd423320dd7ac7f736f3d89c565993fa05e30d23
SSDEEP

1536:wd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211F:wdseIOMEZEyFjEOFqTiQm5l/5211F

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  1daab24ccad698e9414bfb3c59630a4508d483999aaf27bc7b24c99b9b3ba156.exe
- Size
  
  72KB
- MD5
  
  75f834dcadb15ded5a93b83dea92f2a9
- SHA1
  
  1c9a84eb72387c06b5ced9f79fc3133126cdd0a8
- SHA256
  
  1daab24ccad698e9414bfb3c59630a4508d483999aaf27bc7b24c99b9b3ba156
- SHA512
  
  6330659e957041092242056baa9e652dcd9bec7630de34e291512dec678bb3bfa3f9e461baf43c6c19ecf280cd423320dd7ac7f736f3d89c565993fa05e30d23
- SSDEEP
  
  1536:wd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211F:wdseIOMEZEyFjEOFqTiQm5l/5211F
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan