neconyd | 4560e75e744285616a87a122a107ebe30b04f96ac3a8f98bc3001f22b791f2db | Triage

Sharing

General

Target

4560e75e744285616a87a122a107ebe30b04f96ac3a8f98bc3001f22b791f2dbN.exe
Size

65KB
Sample

250125-s1njpszrfn
MD5

5a23b0173a338fbb8069cfe77346e970
SHA1

7c339674d04175cbf58af4d5399311db4f4b6fd7
SHA256

4560e75e744285616a87a122a107ebe30b04f96ac3a8f98bc3001f22b791f2db
SHA512

828040bc301948c8164082f75f69240bcdb2ec50ea2af95d22ae189c935e7b1b34a0c21d3d0405dda2c96ad4b56333b2c75b3a90a9ee4ddde0f2918f80808c27
SSDEEP

1536:nd9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZ/Hzg:PdseIO+EZEyFjEOFqTiQmRHzg

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  4560e75e744285616a87a122a107ebe30b04f96ac3a8f98bc3001f22b791f2dbN.exe
- Size
  
  65KB
- MD5
  
  5a23b0173a338fbb8069cfe77346e970
- SHA1
  
  7c339674d04175cbf58af4d5399311db4f4b6fd7
- SHA256
  
  4560e75e744285616a87a122a107ebe30b04f96ac3a8f98bc3001f22b791f2db
- SHA512
  
  828040bc301948c8164082f75f69240bcdb2ec50ea2af95d22ae189c935e7b1b34a0c21d3d0405dda2c96ad4b56333b2c75b3a90a9ee4ddde0f2918f80808c27
- SSDEEP
  
  1536:nd9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZ/Hzg:PdseIO+EZEyFjEOFqTiQmRHzg
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan