Overview

overview

10

Static

static

3

9c9410731e...2d.exe

windows7-x64

10

9c9410731e...2d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c9410731e693848b6957ecb4d14092872c10c11d9b03351f48504ffc932172d

  • Size

    96KB

  • Sample

    250103-ceyvjsxpfl

  • MD5

    5b735a1cd8ff71670149304eafd61905

  • SHA1

    0287bd29bc755dd8c58a78e7945a9eea84818c4a

  • SHA256

    9c9410731e693848b6957ecb4d14092872c10c11d9b03351f48504ffc932172d

  • SHA512

    58b964d6b3769034ff48e773bdcec857082733503aea2b301e2f794253f0b1b8be1d0e824dab825d0c5400aadfec61c8a17943d7644ea3bffaccaef55c3d2404

  • SSDEEP

    1536:MnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxz:MGs8cd8eXlYairZYqMddH13z

Score
10/10
neconyddiscoverytrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      9c9410731e693848b6957ecb4d14092872c10c11d9b03351f48504ffc932172d

    • Size

      96KB

    • MD5

      5b735a1cd8ff71670149304eafd61905

    • SHA1

      0287bd29bc755dd8c58a78e7945a9eea84818c4a

    • SHA256

      9c9410731e693848b6957ecb4d14092872c10c11d9b03351f48504ffc932172d

    • SHA512

      58b964d6b3769034ff48e773bdcec857082733503aea2b301e2f794253f0b1b8be1d0e824dab825d0c5400aadfec61c8a17943d7644ea3bffaccaef55c3d2404

    • SSDEEP

      1536:MnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxz:MGs8cd8eXlYairZYqMddH13z

    Score
    10/10
    neconyddiscoverytrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Neconyd family

      neconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks