neconyd | 54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bc | Triage

Sharing

General

Target

54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bcN.exe
Size

72KB
Sample

250127-ck5kaavqbt
MD5

6fe48d5c17a51a1e1cdc580929ecf150
SHA1

4a9ef6964981bc925abaa5b71acba37ef701dc63
SHA256

54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bc
SHA512

f6343572658a44f6df4ae82ac8bd0804130baeb5621e3cafa8c6388e52dce08709f569f7aebdb2887c601d0a05a6ae4875d66c9c650e271cfb7c20b6150a3451
SSDEEP

1536:Jd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211v:JdseIOMEZEyFjEOFqTiQm5l/5211v

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bcN.exe
- Size
  
  72KB
- MD5
  
  6fe48d5c17a51a1e1cdc580929ecf150
- SHA1
  
  4a9ef6964981bc925abaa5b71acba37ef701dc63
- SHA256
  
  54a91bba6f8f6018724b9e0f106450057164d0730d979d992a61f25d49c936bc
- SHA512
  
  f6343572658a44f6df4ae82ac8bd0804130baeb5621e3cafa8c6388e52dce08709f569f7aebdb2887c601d0a05a6ae4875d66c9c650e271cfb7c20b6150a3451
- SSDEEP
  
  1536:Jd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211v:JdseIOMEZEyFjEOFqTiQm5l/5211v
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan