neconyd | 909fc26349727f0151f6f1a86beccc485581e5e394e5395645dbe2646ac66252 | Triage

Sharing

General

Target

909fc26349727f0151f6f1a86beccc485581e5e394e5395645dbe2646ac66252N
Size

71KB
Sample

250112-3kshtsxmej
MD5

2cfe0f618024241fd92a21de19831700
SHA1

ae2f30105ae1b9c7751f283606fcace01f42cef5
SHA256

909fc26349727f0151f6f1a86beccc485581e5e394e5395645dbe2646ac66252
SHA512

d35ceadd67660fcf9d17b4a4442eac677f8a02dad6d12b494c39536e88ac936fd6e4cc5abb95068faae9251e4fa0b70e315126409047cb655db0a3c02ed82d02
SSDEEP

1536:4d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbHV:IdseIOMEZEyFjEOFqTiQmQDHIbHV

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  909fc26349727f0151f6f1a86beccc485581e5e394e5395645dbe2646ac66252N
- Size
  
  71KB
- MD5
  
  2cfe0f618024241fd92a21de19831700
- SHA1
  
  ae2f30105ae1b9c7751f283606fcace01f42cef5
- SHA256
  
  909fc26349727f0151f6f1a86beccc485581e5e394e5395645dbe2646ac66252
- SHA512
  
  d35ceadd67660fcf9d17b4a4442eac677f8a02dad6d12b494c39536e88ac936fd6e4cc5abb95068faae9251e4fa0b70e315126409047cb655db0a3c02ed82d02
- SSDEEP
  
  1536:4d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbHV:IdseIOMEZEyFjEOFqTiQmQDHIbHV
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan