neconyd | 6bed8d1ef662498f47aa5c77dea06f330a918873c4322edc54a57bb63e4ccafd | Triage

Sharing

General

Target

6bed8d1ef662498f47aa5c77dea06f330a918873c4322edc54a57bb63e4ccafd.exe
Size

64KB
Sample

250117-qpvgrsyrhy
MD5

890017cc214815888bd06f01d6ea9ba9
SHA1

980b4f308aef43b85a005a490bacfb4eafddb2ac
SHA256

6bed8d1ef662498f47aa5c77dea06f330a918873c4322edc54a57bb63e4ccafd
SHA512

2a121698c866435f0151ae602d38cb1e6926a3e599a486c4076217a9593ec25f318cdeb3e385fb2aea877461e452c734e5ca711aab96816f4ee362b8dbed281b
SSDEEP

768:oMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uAV:obIvYvZEyFKF6N4yS+AQmZcl/5d

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6bed8d1ef662498f47aa5c77dea06f330a918873c4322edc54a57bb63e4ccafd.exe
- Size
  
  64KB
- MD5
  
  890017cc214815888bd06f01d6ea9ba9
- SHA1
  
  980b4f308aef43b85a005a490bacfb4eafddb2ac
- SHA256
  
  6bed8d1ef662498f47aa5c77dea06f330a918873c4322edc54a57bb63e4ccafd
- SHA512
  
  2a121698c866435f0151ae602d38cb1e6926a3e599a486c4076217a9593ec25f318cdeb3e385fb2aea877461e452c734e5ca711aab96816f4ee362b8dbed281b
- SSDEEP
  
  768:oMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uAV:obIvYvZEyFKF6N4yS+AQmZcl/5d
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan