neconyd | c9daffc80f0a80703777f17aab9cad483444c74141dafada042d48fe1a27571d | Triage

Sharing

General

Target

c9daffc80f0a80703777f17aab9cad483444c74141dafada042d48fe1a27571dN.exe
Size

65KB
Sample

250122-k2nbbsyrem
MD5

d5d05acd29a4225bffef36e3d6fb1ee0
SHA1

007d469de21c5a9015762614677e2c8c6893c25b
SHA256

c9daffc80f0a80703777f17aab9cad483444c74141dafada042d48fe1a27571d
SHA512

f02c620fc9b61d9f503c0bc269c9e2e6d0dfa1bb7436be697a4b0cf0a9df8c824a5afab16deeeb1c623c6c40878ebd8bc90ba81b32855d15cd791233b291293a
SSDEEP

1536:4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZ/Hz:IdseIO+EZEyFjEOFqTiQmRHz

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  c9daffc80f0a80703777f17aab9cad483444c74141dafada042d48fe1a27571dN.exe
- Size
  
  65KB
- MD5
  
  d5d05acd29a4225bffef36e3d6fb1ee0
- SHA1
  
  007d469de21c5a9015762614677e2c8c6893c25b
- SHA256
  
  c9daffc80f0a80703777f17aab9cad483444c74141dafada042d48fe1a27571d
- SHA512
  
  f02c620fc9b61d9f503c0bc269c9e2e6d0dfa1bb7436be697a4b0cf0a9df8c824a5afab16deeeb1c623c6c40878ebd8bc90ba81b32855d15cd791233b291293a
- SSDEEP
  
  1536:4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZ/Hz:IdseIO+EZEyFjEOFqTiQmRHz
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan