neconyd | ade2bd01238921669158fc93493bebdd619f6f70a694139a7ad16d2161d55053 | Triage

Sharing

General

Target

ade2bd01238921669158fc93493bebdd619f6f70a694139a7ad16d2161d55053N.exe
Size

76KB
Sample

250108-3smyba1nan
MD5

3249742a7d0e3497996c9de74db29b00
SHA1

a132d9ffbe6045ab69b35a7d8acb3dfa947273c0
SHA256

ade2bd01238921669158fc93493bebdd619f6f70a694139a7ad16d2161d55053
SHA512

02d1fd6a4ba75049a07c05b7852dbc14a27c7a2ae69176f6e949b28f9b71c70142d44af2833dd20f0bd3f7641d1933f967e3fa1e55bbf11a488c06754172d251
SSDEEP

1536:3d9dseIOcE93bIvYvZEyF4EEOF6N4XS+AQmZTl/5w11H:/dseIOMEZEyFjEOFqaiQm5l/5w11H

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  ade2bd01238921669158fc93493bebdd619f6f70a694139a7ad16d2161d55053N.exe
- Size
  
  76KB
- MD5
  
  3249742a7d0e3497996c9de74db29b00
- SHA1
  
  a132d9ffbe6045ab69b35a7d8acb3dfa947273c0
- SHA256
  
  ade2bd01238921669158fc93493bebdd619f6f70a694139a7ad16d2161d55053
- SHA512
  
  02d1fd6a4ba75049a07c05b7852dbc14a27c7a2ae69176f6e949b28f9b71c70142d44af2833dd20f0bd3f7641d1933f967e3fa1e55bbf11a488c06754172d251
- SSDEEP
  
  1536:3d9dseIOcE93bIvYvZEyF4EEOF6N4XS+AQmZTl/5w11H:/dseIOMEZEyFjEOFqaiQm5l/5w11H
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan