neconyd | 088e0fda49badfddc1f558291967ecbaeea54d6ec0a6ae7c05506381627b8908 | Triage

Sharing

General

Target

088e0fda49badfddc1f558291967ecbaeea54d6ec0a6ae7c05506381627b8908.exe
Size

76KB
Sample

241231-3ddq4axlej
MD5

f258e3204bbb59c6cf0d5cd73e05df4b
SHA1

bf6d6beb5dc195a2f028b834d798f1035159dcdc
SHA256

088e0fda49badfddc1f558291967ecbaeea54d6ec0a6ae7c05506381627b8908
SHA512

8117b42d31c0442addbd70b5d7125ec4354e51e3013eba1ea658fe9769e86c3a7e674c7de5aa54a9515ca6fed8f938773ee1f7e94b98dc1c9a7f4a52d5b59f59
SSDEEP

768:AMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAWD:AbIvYvZEyFKF6N4yS+AQmZTl/5OD

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  088e0fda49badfddc1f558291967ecbaeea54d6ec0a6ae7c05506381627b8908.exe
- Size
  
  76KB
- MD5
  
  f258e3204bbb59c6cf0d5cd73e05df4b
- SHA1
  
  bf6d6beb5dc195a2f028b834d798f1035159dcdc
- SHA256
  
  088e0fda49badfddc1f558291967ecbaeea54d6ec0a6ae7c05506381627b8908
- SHA512
  
  8117b42d31c0442addbd70b5d7125ec4354e51e3013eba1ea658fe9769e86c3a7e674c7de5aa54a9515ca6fed8f938773ee1f7e94b98dc1c9a7f4a52d5b59f59
- SSDEEP
  
  768:AMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAWD:AbIvYvZEyFKF6N4yS+AQmZTl/5OD
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan