Overview

overview

10

Static

static

1

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd0eb6fff38b72907c56ad02467144b61744a7d24a054ce14eddf779854180ca

  • Size

    272KB

  • Sample

    210924-qd86sahah5

  • MD5

    a503bf5f5a7aefd063ad1ce5c0c244ed

  • SHA1

    4fdf77348d0d33804254ab3e0761fe2a4ef5f82d

  • SHA256

    bd0eb6fff38b72907c56ad02467144b61744a7d24a054ce14eddf779854180ca

  • SHA512

    08286e00054005b6feaaef4c27e806c0cd5fd781d4f97e9e7118489bfee4ab7d102d21e86f25e1d615ae917e246e48beae703950c9b2d3ac51b3871b56f8f52f

Score
10/10
neshtapersistencespywarestealer

Malware Config

Targets

    • Target

      bd0eb6fff38b72907c56ad02467144b61744a7d24a054ce14eddf779854180ca

    • Size

      272KB

    • MD5

      a503bf5f5a7aefd063ad1ce5c0c244ed

    • SHA1

      4fdf77348d0d33804254ab3e0761fe2a4ef5f82d

    • SHA256

      bd0eb6fff38b72907c56ad02467144b61744a7d24a054ce14eddf779854180ca

    • SHA512

      08286e00054005b6feaaef4c27e806c0cd5fd781d4f97e9e7118489bfee4ab7d102d21e86f25e1d615ae917e246e48beae703950c9b2d3ac51b3871b56f8f52f

    Score
    10/10
    neshtapersistencespywarestealer

    • Modifies system executable filetype association

      persistence

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks