neconyd | 261915a75c9c05eb27ea0f20af21b594e6713d51de3056d49a0ae5dde23d9bd9 | Triage

Sharing

General

Target

261915a75c9c05eb27ea0f20af21b594e6713d51de3056d49a0ae5dde23d9bd9N.exe
Size

76KB
Sample

241231-vabhkasjdk
MD5

fa3e88b79d7f31ed90462d41155ccfe0
SHA1

4619556e37f8549041b280b1626342c74e3bcb3c
SHA256

261915a75c9c05eb27ea0f20af21b594e6713d51de3056d49a0ae5dde23d9bd9
SHA512

0b90acec18ec4eaf607575bb13ecd581d192f8a6c06e637f3afbbf5970fd98f30fa018f1260cdd7cd2d9379b64363d1cdbe20aaa23d3258f04a8d212c80aa5be
SSDEEP

768:MMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAWb:MbIvYvZEyFKF6N4yS+AQmZTl/5Ob

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  261915a75c9c05eb27ea0f20af21b594e6713d51de3056d49a0ae5dde23d9bd9N.exe
- Size
  
  76KB
- MD5
  
  fa3e88b79d7f31ed90462d41155ccfe0
- SHA1
  
  4619556e37f8549041b280b1626342c74e3bcb3c
- SHA256
  
  261915a75c9c05eb27ea0f20af21b594e6713d51de3056d49a0ae5dde23d9bd9
- SHA512
  
  0b90acec18ec4eaf607575bb13ecd581d192f8a6c06e637f3afbbf5970fd98f30fa018f1260cdd7cd2d9379b64363d1cdbe20aaa23d3258f04a8d212c80aa5be
- SSDEEP
  
  768:MMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uAWb:MbIvYvZEyFKF6N4yS+AQmZTl/5Ob
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan