General

  • Target

    0849bbd6489e2c9e29cda02169f243cd.bin

  • Size

    1.4MB

  • MD5

    2c669a46310f1dcf63055c3d69c9b89e

  • SHA1

    770a2df0db0ca38b5828aab472599618e787a518

  • SHA256

    d1dd64b46931809aef3ea88cd9769932821a7d3adcbfb434142074556ab7e748

  • SHA512

    07447e2511ac07fe8b5d0412fd25efb9ce3cdd41a0fddf9de2d8fd67843cc7cf9739312e64589212c8819eedac610bfe07af2332a5b787b940119434b8a08bd9

  • SSDEEP

    24576:6tJJBU8cHW+oUo0ozvPmhIvM1rQHh4pqLSySTQ/+kLzEBn5uS:sJJIUvehAzKpqmLTQ/5Lyn5B

Score
10/10

Malware Config

Signatures

  • Detect Neshta payload 1 IoCs
  • Neshta family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0849bbd6489e2c9e29cda02169f243cd.bin
    .zip

    Password: infected

  • 7ff63ced9ab495d072ba976462fcbf74e6529cdc9810a991e1f0b85d7c44b66e.exe
    .exe windows x86

    Password: infected


    Headers

    Sections