neconyd | a869b932a309809104b953c6d85343c402d6c6febe2e063514a1f0feb8ea5f18 | Triage

Sharing

General

Target

a869b932a309809104b953c6d85343c402d6c6febe2e063514a1f0feb8ea5f18.exe
Size

88KB
Sample

250122-ve3gvawkex
MD5

3f55b3190b0c45b83dc48b7112da87cc
SHA1

17708d2217db6973e7e54c2bc2d578b47090b8f6
SHA256

a869b932a309809104b953c6d85343c402d6c6febe2e063514a1f0feb8ea5f18
SHA512

e7823ed80f3654102b6e6ab904fa9636696083ad76fb4e28cfdb667113a3d94aa36de9b685704323a1f66b8f00b8d361fc1beca411545f90c971a34c76c202ef
SSDEEP

1536:nd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5T:PdseIOMEZEyFjEOFqTiQm5l/5T

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  a869b932a309809104b953c6d85343c402d6c6febe2e063514a1f0feb8ea5f18.exe
- Size
  
  88KB
- MD5
  
  3f55b3190b0c45b83dc48b7112da87cc
- SHA1
  
  17708d2217db6973e7e54c2bc2d578b47090b8f6
- SHA256
  
  a869b932a309809104b953c6d85343c402d6c6febe2e063514a1f0feb8ea5f18
- SHA512
  
  e7823ed80f3654102b6e6ab904fa9636696083ad76fb4e28cfdb667113a3d94aa36de9b685704323a1f66b8f00b8d361fc1beca411545f90c971a34c76c202ef
- SSDEEP
  
  1536:nd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5T:PdseIOMEZEyFjEOFqTiQm5l/5T
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan