neconyd | 83c09e8c0d8765cbd46b56b0047133ce8e2743dc909e8b31ea216653f5912dd8 | Triage

Sharing

General

Target

83c09e8c0d8765cbd46b56b0047133ce8e2743dc909e8b31ea216653f5912dd8N
Size

71KB
Sample

250113-x646vsxkar
MD5

7e3b7e1fca898cc8eae52c97f52e28e0
SHA1

3bd3ef24fdef703122450397d7a385fdeee76b78
SHA256

83c09e8c0d8765cbd46b56b0047133ce8e2743dc909e8b31ea216653f5912dd8
SHA512

394d7b5612f6685ec7d75ae17657645187f5822f3f3c091566401cc8ce099830c86278c5e96f12fb13c0c9402568873e3b642dafe02555715ccc8a7e81e052f8
SSDEEP

1536:fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:XdseIOMEZEyFjEOFqTiQmQDHIbH

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  83c09e8c0d8765cbd46b56b0047133ce8e2743dc909e8b31ea216653f5912dd8N
- Size
  
  71KB
- MD5
  
  7e3b7e1fca898cc8eae52c97f52e28e0
- SHA1
  
  3bd3ef24fdef703122450397d7a385fdeee76b78
- SHA256
  
  83c09e8c0d8765cbd46b56b0047133ce8e2743dc909e8b31ea216653f5912dd8
- SHA512
  
  394d7b5612f6685ec7d75ae17657645187f5822f3f3c091566401cc8ce099830c86278c5e96f12fb13c0c9402568873e3b642dafe02555715ccc8a7e81e052f8
- SSDEEP
  
  1536:fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:XdseIOMEZEyFjEOFqTiQmQDHIbH
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan