neconyd | f9f8076b87c8d6855ef682bbbdc4aebbaf1d8cff2d86be2ae1175dcc8e89ad36 | Triage

Sharing

General

Target

f9f8076b87c8d6855ef682bbbdc4aebbaf1d8cff2d86be2ae1175dcc8e89ad36
Size

80KB
Sample

250112-l3zw7axpfy
MD5

c15d9fdf5c446b1c175a66be1ad84e25
SHA1

83c24c21624667175e4c8d5cac539312c75706e0
SHA256

f9f8076b87c8d6855ef682bbbdc4aebbaf1d8cff2d86be2ae1175dcc8e89ad36
SHA512

ebfb468ddc390972b7cfd3db666b52587a64112b633aab457368d02e0881cd505627f8a14f506ede91dc06a422c7e82950fb67fa3ac0c0e3694ec325b06180bd
SSDEEP

1536:Sd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzb:idseIOMEZEyFjEOFqTiQmOl/5xPvw/

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  f9f8076b87c8d6855ef682bbbdc4aebbaf1d8cff2d86be2ae1175dcc8e89ad36
- Size
  
  80KB
- MD5
  
  c15d9fdf5c446b1c175a66be1ad84e25
- SHA1
  
  83c24c21624667175e4c8d5cac539312c75706e0
- SHA256
  
  f9f8076b87c8d6855ef682bbbdc4aebbaf1d8cff2d86be2ae1175dcc8e89ad36
- SHA512
  
  ebfb468ddc390972b7cfd3db666b52587a64112b633aab457368d02e0881cd505627f8a14f506ede91dc06a422c7e82950fb67fa3ac0c0e3694ec325b06180bd
- SSDEEP
  
  1536:Sd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzb:idseIOMEZEyFjEOFqTiQmOl/5xPvw/
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan