neconyd | 17360f7e478974170e678c862f2055162d89bb7b8e5be36f4a08873ec92e0c9f | Triage

Sharing

General

Target

17360f7e478974170e678c862f2055162d89bb7b8e5be36f4a08873ec92e0c9f
Size

61KB
Sample

250121-zn6yvazpbw
MD5

a74cb5983f2c35758dbfb8918f1c1de3
SHA1

8d44cd64264c145feeb9ce87f9a77e4c3edca65e
SHA256

17360f7e478974170e678c862f2055162d89bb7b8e5be36f4a08873ec92e0c9f
SHA512

4cc0792d2bb0ba057a0812262adabdc076a9bca756b25ee8b8a3fdda9d2e4e6b888c3202dac93b1397d75a61dd674125014a59a8e853c942c6bd308e90530bf3
SSDEEP

1536:Cd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZll/5:ydseIOMEZEyFjEOFqTiQmPl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  17360f7e478974170e678c862f2055162d89bb7b8e5be36f4a08873ec92e0c9f
- Size
  
  61KB
- MD5
  
  a74cb5983f2c35758dbfb8918f1c1de3
- SHA1
  
  8d44cd64264c145feeb9ce87f9a77e4c3edca65e
- SHA256
  
  17360f7e478974170e678c862f2055162d89bb7b8e5be36f4a08873ec92e0c9f
- SHA512
  
  4cc0792d2bb0ba057a0812262adabdc076a9bca756b25ee8b8a3fdda9d2e4e6b888c3202dac93b1397d75a61dd674125014a59a8e853c942c6bd308e90530bf3
- SSDEEP
  
  1536:Cd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZll/5:ydseIOMEZEyFjEOFqTiQmPl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan