neconyd | 7acb671acbdf51f46654cb14ce880042627a05da14acf6e8be04ea6ec076770e | Triage

Sharing

General

Target

7acb671acbdf51f46654cb14ce880042627a05da14acf6e8be04ea6ec076770e.exe
Size

72KB
Sample

250116-fcpewatnam
MD5

797b05d00fb1211f8ac5f9426077beb0
SHA1

99c850d26563e145a26f0a6598accadd31715d68
SHA256

7acb671acbdf51f46654cb14ce880042627a05da14acf6e8be04ea6ec076770e
SHA512

37bddad3fb64983ef6725cee4b08d368ff6b39be88eb01e0041d9e3348531b582fc029821e7c5dc62b3bd0af21410ca3fa445c1042102e7d237c7c47fd8ba254
SSDEEP

1536:Ld9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211v:7dseIOMEZEyFjEOFqTiQm5l/5211v

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  7acb671acbdf51f46654cb14ce880042627a05da14acf6e8be04ea6ec076770e.exe
- Size
  
  72KB
- MD5
  
  797b05d00fb1211f8ac5f9426077beb0
- SHA1
  
  99c850d26563e145a26f0a6598accadd31715d68
- SHA256
  
  7acb671acbdf51f46654cb14ce880042627a05da14acf6e8be04ea6ec076770e
- SHA512
  
  37bddad3fb64983ef6725cee4b08d368ff6b39be88eb01e0041d9e3348531b582fc029821e7c5dc62b3bd0af21410ca3fa445c1042102e7d237c7c47fd8ba254
- SSDEEP
  
  1536:Ld9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211v:7dseIOMEZEyFjEOFqTiQm5l/5211v
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan