General

  • Target

    3c88d036cb5a533d85b37986c5cdaab16bfaf4835ba52982d47d1e85b547d6ae

  • Size

    4.8MB

  • Sample

    221017-3bh8ssdee4

  • MD5

    0d0745557c41607954f0fc2ccd776fab

  • SHA1

    0e90985e3e38b8eb5f0ab7b8983e7ae2de16811e

  • SHA256

    3c88d036cb5a533d85b37986c5cdaab16bfaf4835ba52982d47d1e85b547d6ae

  • SHA512

    5871327867239f0d481d550c85e91ce1538fd17a9226df50ca3d3b8240d4c4924b69e4cd3010d25bf6702b8f0d7b87168c9b60013e157aa3d25d58dc9ebd043a

  • SSDEEP

    98304:lf7wCQInrje/CAVMJy1W3OfOLOy4YiEnJ1+qE:lfn6/VSl+fO1r+b

Malware Config

Targets

    • Target

      3c88d036cb5a533d85b37986c5cdaab16bfaf4835ba52982d47d1e85b547d6ae

    • Size

      4.8MB

    • MD5

      0d0745557c41607954f0fc2ccd776fab

    • SHA1

      0e90985e3e38b8eb5f0ab7b8983e7ae2de16811e

    • SHA256

      3c88d036cb5a533d85b37986c5cdaab16bfaf4835ba52982d47d1e85b547d6ae

    • SHA512

      5871327867239f0d481d550c85e91ce1538fd17a9226df50ca3d3b8240d4c4924b69e4cd3010d25bf6702b8f0d7b87168c9b60013e157aa3d25d58dc9ebd043a

    • SSDEEP

      98304:lf7wCQInrje/CAVMJy1W3OfOLOy4YiEnJ1+qE:lfn6/VSl+fO1r+b

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Modifies AppInit DLL entries

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks