General

  • Target

    397cd818297d991cdd6497572d261a25.bin

  • Size

    957KB

  • MD5

    862d013f9ee9694935d684592f5552fd

  • SHA1

    7bef54a5de2c4ff70381effe82fd26e4966da3cc

  • SHA256

    4a930ad4164e05378212a38bfc00145abe6519bb4edced481a2d93e8f82d0261

  • SHA512

    413121934e9c9932cd6e9e68a2817d5bea8413185a2d7148d33e4bf559a3067d349a6be849cd9a2f46c93f9640b92ea5792efcca0328deacb5ec58033cf5b05f

  • SSDEEP

    12288:dLKwpxqbdCjWNO2CrqyjGaGuyvOOqL7M+7VsURTRN6tCMnnZlUarT4Fr+ExjzGcs:d/YdCCMrqDOOqHTRN6thgN+izGK2v

Score
10/10

Malware Config

Signatures

  • Detect Neshta payload 1 IoCs
  • Neshta family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 397cd818297d991cdd6497572d261a25.bin
    .zip

    Password: infected

  • 0112a299785ef16cc0d6b84bf084a0122a700788180242afae4dac3b40a2bb50.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected


    Headers

    Sections