neconyd | beb3fd62f185ae17d6a2479bec56aa2a59baad83737ca15857701eea4b109ba9 | Triage

Sharing

General

Target

beb3fd62f185ae17d6a2479bec56aa2a59baad83737ca15857701eea4b109ba9
Size

90KB
Sample

250128-c7f57svmhk
MD5

3b8725ff1ee7fd1c4ee34a0430a5eca0
SHA1

4c37b66331cea9cbec26979c73316589279a2b94
SHA256

beb3fd62f185ae17d6a2479bec56aa2a59baad83737ca15857701eea4b109ba9
SHA512

48a3dd01b21910b21fcf469d47ecb4717ad77f5a6e09de8602ece8bb54d24e5a513ecfa6320c8711a8c131c83abb5649e3daaf6d6727f861b4c45f71415bb68b
SSDEEP

768:yMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAu:ybIvYvZEyFKF6N4aS5AQmZTl/5m

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  beb3fd62f185ae17d6a2479bec56aa2a59baad83737ca15857701eea4b109ba9
- Size
  
  90KB
- MD5
  
  3b8725ff1ee7fd1c4ee34a0430a5eca0
- SHA1
  
  4c37b66331cea9cbec26979c73316589279a2b94
- SHA256
  
  beb3fd62f185ae17d6a2479bec56aa2a59baad83737ca15857701eea4b109ba9
- SHA512
  
  48a3dd01b21910b21fcf469d47ecb4717ad77f5a6e09de8602ece8bb54d24e5a513ecfa6320c8711a8c131c83abb5649e3daaf6d6727f861b4c45f71415bb68b
- SSDEEP
  
  768:yMEIvFGvZEr8LFK0ic46N4zeSdPAHwmZGp6JXXlaa5uAu:ybIvYvZEyFKF6N4aS5AQmZTl/5m
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan