neconyd | 60d125e2ac4160043e06d89dee51a2038d6935e216aa598d91c6599ef605893c | Triage

Sharing

General

Target

60d125e2ac4160043e06d89dee51a2038d6935e216aa598d91c6599ef605893c
Size

80KB
Sample

250110-bpx6bswrfy
MD5

4d3cc41faa31eb96295e76864a47ea99
SHA1

d6fb975c6b1dad0bb857203bf41475bbc5a873f5
SHA256

60d125e2ac4160043e06d89dee51a2038d6935e216aa598d91c6599ef605893c
SHA512

6757cf1be1dc65c7b876bad17cefb8b9ace5340249df9448a8ec331f11bda36447da7a36b3bb9831e06bd9f93da81af4af7e62a8307fc6ab2a1269fb29ad2984
SSDEEP

1536:/d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzJ:3dseIOMEZEyFjEOFqTiQmOl/5xPvwV

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  60d125e2ac4160043e06d89dee51a2038d6935e216aa598d91c6599ef605893c
- Size
  
  80KB
- MD5
  
  4d3cc41faa31eb96295e76864a47ea99
- SHA1
  
  d6fb975c6b1dad0bb857203bf41475bbc5a873f5
- SHA256
  
  60d125e2ac4160043e06d89dee51a2038d6935e216aa598d91c6599ef605893c
- SHA512
  
  6757cf1be1dc65c7b876bad17cefb8b9ace5340249df9448a8ec331f11bda36447da7a36b3bb9831e06bd9f93da81af4af7e62a8307fc6ab2a1269fb29ad2984
- SSDEEP
  
  1536:/d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzJ:3dseIOMEZEyFjEOFqTiQmOl/5xPvwV
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan