neconyd | ce0b4bc04397fc3758d1771743ab780c223dccc5568314322f3b2a6d89bebee0 | Triage

Sharing

General

Target

ce0b4bc04397fc3758d1771743ab780c223dccc5568314322f3b2a6d89bebee0N.exe
Size

80KB
Sample

250112-pmeg4askcz
MD5

aa2c94b3d28aaf7ca6f821fa6af68f60
SHA1

3a027ee21bfcef356014604a39f98c7e43a596e6
SHA256

ce0b4bc04397fc3758d1771743ab780c223dccc5568314322f3b2a6d89bebee0
SHA512

138f2c981bdb55cdb68cc51de351bcec33a94fe3dce26e038af43ca4515df9853db03782002a02ab54476b5a4bc748111a30abd29d6bc05a296d83c1b5bd48c9
SSDEEP

1536:Td9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzb:TdseIOMEZEyFjEOFqTiQmOl/5xPvw/

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  ce0b4bc04397fc3758d1771743ab780c223dccc5568314322f3b2a6d89bebee0N.exe
- Size
  
  80KB
- MD5
  
  aa2c94b3d28aaf7ca6f821fa6af68f60
- SHA1
  
  3a027ee21bfcef356014604a39f98c7e43a596e6
- SHA256
  
  ce0b4bc04397fc3758d1771743ab780c223dccc5568314322f3b2a6d89bebee0
- SHA512
  
  138f2c981bdb55cdb68cc51de351bcec33a94fe3dce26e038af43ca4515df9853db03782002a02ab54476b5a4bc748111a30abd29d6bc05a296d83c1b5bd48c9
- SSDEEP
  
  1536:Td9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZcl/52izbR9Xwzb:TdseIOMEZEyFjEOFqTiQmOl/5xPvw/
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan