neconyd | 4ae3d4a1d7f02a18293b921396edf6c954a41b2d61ec817ce5f696b75bdf468c | Triage

Sharing

General

Target

4ae3d4a1d7f02a18293b921396edf6c954a41b2d61ec817ce5f696b75bdf468c.exe
Size

61KB
Sample

250124-j4yz6symhw
MD5

fd6ee9c57884f8799dde7a08730562bb
SHA1

a4188254326ac445ff34e2598306eb1a674ee0fb
SHA256

4ae3d4a1d7f02a18293b921396edf6c954a41b2d61ec817ce5f696b75bdf468c
SHA512

b0aa446eb93a4418757c7dffd59cfb0174b755ed4a6fe20b4079a59c8b4b17c42b56f4a4d1f7441156d78876478e84d1913bbaec469cbb6a640091f85cbd3705
SSDEEP

1536:kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZll/5t:cdseIOMEZEyFjEOFqTiQmPl/5t

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  4ae3d4a1d7f02a18293b921396edf6c954a41b2d61ec817ce5f696b75bdf468c.exe
- Size
  
  61KB
- MD5
  
  fd6ee9c57884f8799dde7a08730562bb
- SHA1
  
  a4188254326ac445ff34e2598306eb1a674ee0fb
- SHA256
  
  4ae3d4a1d7f02a18293b921396edf6c954a41b2d61ec817ce5f696b75bdf468c
- SHA512
  
  b0aa446eb93a4418757c7dffd59cfb0174b755ed4a6fe20b4079a59c8b4b17c42b56f4a4d1f7441156d78876478e84d1913bbaec469cbb6a640091f85cbd3705
- SSDEEP
  
  1536:kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZll/5t:cdseIOMEZEyFjEOFqTiQmPl/5t
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan