neconyd | 075edd3335fbf4aab941b41eea8c89fb25d2f0afe11728a353947a67681fa90f | Triage

Sharing

General

Target

075edd3335fbf4aab941b41eea8c89fb25d2f0afe11728a353947a67681fa90f.exe
Size

72KB
Sample

250111-k264fatpdx
MD5

882b21ffea45df06e8d491977cc09462
SHA1

4854d5ce9493caa4951194c1e467d048f7217e09
SHA256

075edd3335fbf4aab941b41eea8c89fb25d2f0afe11728a353947a67681fa90f
SHA512

facd894cb976006124b2de29886b2e47d147addd4fba162e18a3126f02aac74acbe4bf63edafc6011376a1b9e09f3da351a114c1225fea2a0fa4827802018f37
SSDEEP

1536:Sd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211H:idseIOMEZEyFjEOFqTiQm5l/5211H

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  075edd3335fbf4aab941b41eea8c89fb25d2f0afe11728a353947a67681fa90f.exe
- Size
  
  72KB
- MD5
  
  882b21ffea45df06e8d491977cc09462
- SHA1
  
  4854d5ce9493caa4951194c1e467d048f7217e09
- SHA256
  
  075edd3335fbf4aab941b41eea8c89fb25d2f0afe11728a353947a67681fa90f
- SHA512
  
  facd894cb976006124b2de29886b2e47d147addd4fba162e18a3126f02aac74acbe4bf63edafc6011376a1b9e09f3da351a114c1225fea2a0fa4827802018f37
- SSDEEP
  
  1536:Sd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211H:idseIOMEZEyFjEOFqTiQm5l/5211H
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan