neconyd | ce3f90337ff828af2c03fa476948061e41a7ceb9982dfb116c315dd77271ee52 | Triage

Sharing

General

Target

ce3f90337ff828af2c03fa476948061e41a7ceb9982dfb116c315dd77271ee52N.exe
Size

80KB
Sample

250104-lkdagawkaq
MD5

9470866f27507e29f99d1ec06e9a9420
SHA1

d41cb77c832d9201f50c966508e75d97c59f85df
SHA256

ce3f90337ff828af2c03fa476948061e41a7ceb9982dfb116c315dd77271ee52
SHA512

622d320fdd22431e5e068539b3704ac80ca994062d7d73f22c1b1ac316c7b82ba790a05eb0205105b444a7e5a31402f7ff193dbdab8ce413634420f7071dbff1
SSDEEP

1536:ud9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzB:2dseIOMEZEyFjEOFqTiQmOl/5xPvwN

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  ce3f90337ff828af2c03fa476948061e41a7ceb9982dfb116c315dd77271ee52N.exe
- Size
  
  80KB
- MD5
  
  9470866f27507e29f99d1ec06e9a9420
- SHA1
  
  d41cb77c832d9201f50c966508e75d97c59f85df
- SHA256
  
  ce3f90337ff828af2c03fa476948061e41a7ceb9982dfb116c315dd77271ee52
- SHA512
  
  622d320fdd22431e5e068539b3704ac80ca994062d7d73f22c1b1ac316c7b82ba790a05eb0205105b444a7e5a31402f7ff193dbdab8ce413634420f7071dbff1
- SSDEEP
  
  1536:ud9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzB:2dseIOMEZEyFjEOFqTiQmOl/5xPvwN
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan