General

  • Target

    Neshta.exe

  • Size

    719KB

  • MD5

    8474039d83805eb7b447325c3a8d1ebb

  • SHA1

    a07d537f4253745a087709a9a07c449f84deed8d

  • SHA256

    b2493a580153291b69ca23190d00a00b1220cd0aadf469b3974fdaa726516649

  • SHA512

    3272091bbf123ba5e1592e8b2bd7740cddcb174fa158bc6980b25ee61d92387e94a25284736253f83a6eea78b427f6717e888e843db9d7759cfe9a7676576438

  • SSDEEP

    12288:q4UOTYQivI2qZ7aSgLwkFVpzUvest4ZEbjJLuhJVoM7SPd:bRTYVQ2qZ7aSgLwuVfstRJL6YM6

Score
10/10

Malware Config

Signatures

  • Detect Neshta payload 1 IoCs
  • MedusaLocker payload 1 IoCs
  • Medusalocker family
  • Neshta family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Neshta.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections