neconyd | 6db8f0963de9579a8da1f772575aff7bfaba64e8fc5fef4515a7b864fd120362 | Triage

Sharing

General

Target

6db8f0963de9579a8da1f772575aff7bfaba64e8fc5fef4515a7b864fd120362N.exe
Size

61KB
Sample

250109-eydptsyjay
MD5

b39f829b6686b24bf83dd1c07bb4ea00
SHA1

dbea6a04c22ce7935ec1a3835571ff69ac878573
SHA256

6db8f0963de9579a8da1f772575aff7bfaba64e8fc5fef4515a7b864fd120362
SHA512

e5f7c5270b49afaa3ef6369f6ed7d441156b6c4c8d4b0790585545f13111eea1b3a09690f8af993e96859f630c43fb99f2a9d8d73dd402139571e30861619f22
SSDEEP

1536:cd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5P:kdseIOMEZEyFjEOFqTiQmil/5P

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6db8f0963de9579a8da1f772575aff7bfaba64e8fc5fef4515a7b864fd120362N.exe
- Size
  
  61KB
- MD5
  
  b39f829b6686b24bf83dd1c07bb4ea00
- SHA1
  
  dbea6a04c22ce7935ec1a3835571ff69ac878573
- SHA256
  
  6db8f0963de9579a8da1f772575aff7bfaba64e8fc5fef4515a7b864fd120362
- SHA512
  
  e5f7c5270b49afaa3ef6369f6ed7d441156b6c4c8d4b0790585545f13111eea1b3a09690f8af993e96859f630c43fb99f2a9d8d73dd402139571e30861619f22
- SSDEEP
  
  1536:cd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZ4l/5P:kdseIOMEZEyFjEOFqTiQmil/5P
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan