neconyd | 79e121ce9b89940e0eb817f6adb0856c6e90d94ef19feb39442b58cfa372abcb | Triage

Sharing

General

Target

79e121ce9b89940e0eb817f6adb0856c6e90d94ef19feb39442b58cfa372abcb.exe
Size

72KB
Sample

250201-phyeea1qcx
MD5

9592ee5fba1e7596b73533ea1439c32c
SHA1

5c3618e890cdd08638a6bfffa468a982104974a5
SHA256

79e121ce9b89940e0eb817f6adb0856c6e90d94ef19feb39442b58cfa372abcb
SHA512

e3bf195375a131c067913ac33e444afd040c58bcd07d966bd1dd6a9f1a0fb4ba79e0b9722d2d9dc6dce7afe4adb8ef93d2429178e2745d2216386464010404d4
SSDEEP

1536:vd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211N:HdseIOMEZEyFjEOFqTiQm5l/5211N

Score

10^/10

neconyd discovery trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  79e121ce9b89940e0eb817f6adb0856c6e90d94ef19feb39442b58cfa372abcb.exe
- Size
  
  72KB
- MD5
  
  9592ee5fba1e7596b73533ea1439c32c
- SHA1
  
  5c3618e890cdd08638a6bfffa468a982104974a5
- SHA256
  
  79e121ce9b89940e0eb817f6adb0856c6e90d94ef19feb39442b58cfa372abcb
- SHA512
  
  e3bf195375a131c067913ac33e444afd040c58bcd07d966bd1dd6a9f1a0fb4ba79e0b9722d2d9dc6dce7afe4adb8ef93d2429178e2745d2216386464010404d4
- SSDEEP
  
  1536:vd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211N:HdseIOMEZEyFjEOFqTiQm5l/5211N
Score

10^/10

neconyd discovery trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Neconyd family
  neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neconyddiscoverytrojan

behavioral2

neconyddiscoverytrojan