Overview

overview

10

Static

static

1

df330ab2a2...92.exe

windows7_x64

7

df330ab2a2...92.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    df330ab2a2e5aa4ac947315ee3f93992.exe

  • Size

    230KB

  • Sample

    211027-v9b85sfhf4

  • MD5

    df330ab2a2e5aa4ac947315ee3f93992

  • SHA1

    76b5d1eee342b47fe58e2136a067712cbd210351

  • SHA256

    99a897c5b8f53e1d04e51107c748a4f385b754a852ca6b605559f5b50820a64f

  • SHA512

    e65f573d68e8f198024028d553210095173d1551e6074b60d9543977116a0286f75641f4692049a49e6cd03729b001027136419d6cf0c71645e800d5522ed895

Score
10/10
neshtapersistencespywarestealer

Malware Config

Targets

    • Target

      df330ab2a2e5aa4ac947315ee3f93992.exe

    • Size

      230KB

    • MD5

      df330ab2a2e5aa4ac947315ee3f93992

    • SHA1

      76b5d1eee342b47fe58e2136a067712cbd210351

    • SHA256

      99a897c5b8f53e1d04e51107c748a4f385b754a852ca6b605559f5b50820a64f

    • SHA512

      e65f573d68e8f198024028d553210095173d1551e6074b60d9543977116a0286f75641f4692049a49e6cd03729b001027136419d6cf0c71645e800d5522ed895

    Score
    10/10
    neshtapersistencespywarestealer

    • Modifies system executable filetype association

      persistence

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks