neconyd | c678da23b324957bcd52545e5a3eb80cdcc20bddfa0813ab5291c2fcfc654071 | Triage

Sharing

General

Target

c678da23b324957bcd52545e5a3eb80cdcc20bddfa0813ab5291c2fcfc654071N.exe
Size

71KB
Sample

250125-f2y1lsxpfx
MD5

71bb744abacc0cc2d91122f40518e400
SHA1

2696b4941186d1311c3fbcd6e9c821bce6be5cbd
SHA256

c678da23b324957bcd52545e5a3eb80cdcc20bddfa0813ab5291c2fcfc654071
SHA512

fd6043c84c4ea3d077f25cfc663cc0383bc526d4845ab251c803854ad9051db6d612d472a6d1fff667843627861d9e72648581eabbff962545ac4432ee1ea840
SSDEEP

1536:/d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:3dseIOMEZEyFjEOFqTiQmQDHIbH

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  c678da23b324957bcd52545e5a3eb80cdcc20bddfa0813ab5291c2fcfc654071N.exe
- Size
  
  71KB
- MD5
  
  71bb744abacc0cc2d91122f40518e400
- SHA1
  
  2696b4941186d1311c3fbcd6e9c821bce6be5cbd
- SHA256
  
  c678da23b324957bcd52545e5a3eb80cdcc20bddfa0813ab5291c2fcfc654071
- SHA512
  
  fd6043c84c4ea3d077f25cfc663cc0383bc526d4845ab251c803854ad9051db6d612d472a6d1fff667843627861d9e72648581eabbff962545ac4432ee1ea840
- SSDEEP
  
  1536:/d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZSDHIbH:3dseIOMEZEyFjEOFqTiQmQDHIbH
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan