neconyd | 5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5c645b8ece...f2.exe

windows7-x64

5c645b8ece...f2.exe

windows10-2004-x64

Sharing

General

Target

5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2.exe
Size

316KB
Sample

250122-j8pmasxndl
MD5

3c156b4d42ef6d26a7543a93f2e4318d
SHA1

94f6c5a3977ef684228839dbf3289abf990f5203
SHA256

5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2
SHA512

77161e39ee9cf08f3e7cece6764566839215b1f25963cb03cb24f9290ae84f53ffbe162926105003e9e50d069c3b6c14ad9254a137a079c252ff88a8a41e0cc0
SSDEEP

1536:k4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzUR:kIdseIO+EZEyFjEOFqTiQmKnOHjzUR

Score

10^/10

neconyd discovery trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2.exe

Resource

win7-20240903-en

neconyd discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2.exe

Resource

win10v2004-20241007-en

neconyd discovery trojan upx

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2.exe
- Size
  
  316KB
- MD5
  
  3c156b4d42ef6d26a7543a93f2e4318d
- SHA1
  
  94f6c5a3977ef684228839dbf3289abf990f5203
- SHA256
  
  5c645b8ecee32aa864a7cbc2568fbe2e9913cbb7624f98d1aac63ca09ff120f2
- SHA512
  
  77161e39ee9cf08f3e7cece6764566839215b1f25963cb03cb24f9290ae84f53ffbe162926105003e9e50d069c3b6c14ad9254a137a079c252ff88a8a41e0cc0
- SSDEEP
  
  1536:k4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzUR:kIdseIO+EZEyFjEOFqTiQmKnOHjzUR
Score

10^/10

neconyd discovery trojan upx
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojanupx

behavioral2

neconyddiscoverytrojanupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.