neconyd | 8186847ad0d3c62c54c77e58b34c9fd7b79de3caaa325bc89beebf7b18036d3e | Triage

Sharing

General

Target

8186847ad0d3c62c54c77e58b34c9fd7b79de3caaa325bc89beebf7b18036d3e
Size

80KB
Sample

250122-eshftsykdr
MD5

80c4623568ac9cdd336c4400b2fc9e68
SHA1

da0e216fc51b32ed4f89c34fc296c4ebb0ac3413
SHA256

8186847ad0d3c62c54c77e58b34c9fd7b79de3caaa325bc89beebf7b18036d3e
SHA512

6749988a41fa0284218c930d4ffc63f3641597cf18ff996a20d172e17051055570be6912262f5cf435dd41b1ea2286cdab6025c4986b03344ef3fcea3446bb1b
SSDEEP

768:BMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:BbIvYvZEyFKF6N4yS+AQmZTl/5

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  8186847ad0d3c62c54c77e58b34c9fd7b79de3caaa325bc89beebf7b18036d3e
- Size
  
  80KB
- MD5
  
  80c4623568ac9cdd336c4400b2fc9e68
- SHA1
  
  da0e216fc51b32ed4f89c34fc296c4ebb0ac3413
- SHA256
  
  8186847ad0d3c62c54c77e58b34c9fd7b79de3caaa325bc89beebf7b18036d3e
- SHA512
  
  6749988a41fa0284218c930d4ffc63f3641597cf18ff996a20d172e17051055570be6912262f5cf435dd41b1ea2286cdab6025c4986b03344ef3fcea3446bb1b
- SSDEEP
  
  768:BMEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:BbIvYvZEyFKF6N4yS+AQmZTl/5
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan