neconyd | 262c8df6e40fb859d452bee94bca2726bedf0f6f8122890f3d4cb2186b1c97f3 | Triage

Sharing

General

Target

262c8df6e40fb859d452bee94bca2726bedf0f6f8122890f3d4cb2186b1c97f3N.exe
Size

80KB
Sample

250111-xmxbxawnbv
MD5

101d5cd00c4defa5eeaa89725f7f0df0
SHA1

4fa0c6aed99fb5f63437ca7591a1e952b56bf285
SHA256

262c8df6e40fb859d452bee94bca2726bedf0f6f8122890f3d4cb2186b1c97f3
SHA512

0dea35cf236cac8ae34d6e71a1e5431b5f5cab5fbbc8d5ba808994c7383fdb722a3e7a28f3d2d83e42aad8843aa6adb75538b210ef79038fb1593228b1aea407
SSDEEP

1536:ad9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzJ:6dseIOMEZEyFjEOFqTiQmOl/5xPvwV

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  262c8df6e40fb859d452bee94bca2726bedf0f6f8122890f3d4cb2186b1c97f3N.exe
- Size
  
  80KB
- MD5
  
  101d5cd00c4defa5eeaa89725f7f0df0
- SHA1
  
  4fa0c6aed99fb5f63437ca7591a1e952b56bf285
- SHA256
  
  262c8df6e40fb859d452bee94bca2726bedf0f6f8122890f3d4cb2186b1c97f3
- SHA512
  
  0dea35cf236cac8ae34d6e71a1e5431b5f5cab5fbbc8d5ba808994c7383fdb722a3e7a28f3d2d83e42aad8843aa6adb75538b210ef79038fb1593228b1aea407
- SSDEEP
  
  1536:ad9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9XwzJ:6dseIOMEZEyFjEOFqTiQmOl/5xPvwV
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan