neconyd | ea4768945a032acabd3b8db12e9d0c3ffe730ce946ed049f7c75222393223483 | Triage

Sharing

General

Target

ea4768945a032acabd3b8db12e9d0c3ffe730ce946ed049f7c75222393223483
Size

61KB
Sample

250117-lfn66s1kcx
MD5

5e1f7996331d7c63d518437ed335f68b
SHA1

d4da47d3e22d3c6cecd81244223222f1e8b30e64
SHA256

ea4768945a032acabd3b8db12e9d0c3ffe730ce946ed049f7c75222393223483
SHA512

50c1ffcd2ffdcdd68cdb76c33a674e67d61a90b6c90b480b83771e33b830f2207d0e8281ac3b5abcc49343a07e65cdfbc0216c10fcdc42a96139b35674100a3a
SSDEEP

1536:Pd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZxl/5:ndseIOMEZEyFjEOFqTiQmTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  ea4768945a032acabd3b8db12e9d0c3ffe730ce946ed049f7c75222393223483
- Size
  
  61KB
- MD5
  
  5e1f7996331d7c63d518437ed335f68b
- SHA1
  
  d4da47d3e22d3c6cecd81244223222f1e8b30e64
- SHA256
  
  ea4768945a032acabd3b8db12e9d0c3ffe730ce946ed049f7c75222393223483
- SHA512
  
  50c1ffcd2ffdcdd68cdb76c33a674e67d61a90b6c90b480b83771e33b830f2207d0e8281ac3b5abcc49343a07e65cdfbc0216c10fcdc42a96139b35674100a3a
- SSDEEP
  
  1536:Pd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZxl/5:ndseIOMEZEyFjEOFqTiQmTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan