neconyd | 6d3d742cfd5d2f95e576200c5f5d868842d81a5b21faebdeb2225216af6b2571 | Triage

Sharing

General

Target

6d3d742cfd5d2f95e576200c5f5d868842d81a5b21faebdeb2225216af6b2571.exe
Size

61KB
Sample

250122-s2mzkasrfw
MD5

2d6d5374de73373cbc7625527ee63110
SHA1

2f56053b9adf1f48739dd47062ce8df726329f01
SHA256

6d3d742cfd5d2f95e576200c5f5d868842d81a5b21faebdeb2225216af6b2571
SHA512

fd607c5a9dec7262a64234ce76a2fb1569217ec606fd7d402677c07e7798ae3c93bcd0a4bcbce0879bbc67d10e10751f6f9773073afeec9216e7936225d079f3
SSDEEP

1536:fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZxl/5n:XdseIOMEZEyFjEOFqTiQmTl/5n

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  6d3d742cfd5d2f95e576200c5f5d868842d81a5b21faebdeb2225216af6b2571.exe
- Size
  
  61KB
- MD5
  
  2d6d5374de73373cbc7625527ee63110
- SHA1
  
  2f56053b9adf1f48739dd47062ce8df726329f01
- SHA256
  
  6d3d742cfd5d2f95e576200c5f5d868842d81a5b21faebdeb2225216af6b2571
- SHA512
  
  fd607c5a9dec7262a64234ce76a2fb1569217ec606fd7d402677c07e7798ae3c93bcd0a4bcbce0879bbc67d10e10751f6f9773073afeec9216e7936225d079f3
- SSDEEP
  
  1536:fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZxl/5n:XdseIOMEZEyFjEOFqTiQmTl/5n
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan