General
-
Target
8ffdb1ae666b00aac0542b542ea341d43e3f2a5f13ca907f11c650390186bb51
-
Size
1.6MB
-
MD5
de47e0e0639a124e61662d6729a1d83e
-
SHA1
bb3ab0eb9fa8ec37dd73262d7ec474722f16e4e5
-
SHA256
8ffdb1ae666b00aac0542b542ea341d43e3f2a5f13ca907f11c650390186bb51
-
SHA512
ba92298d7043894009e42a62b35b02383550cc111a9142e36c7a31751460ef1a36f554d8789ed6f84ae2c59ad400da4a94d6893b03e9d8e8e51bbc32e705d219
-
SSDEEP
24576:qe5f4ut17rYefIUV+AUqXbZjSS/qdh9fmsoqXgUgf/1sER:N5joefIUV+vaFjH/qRaWy
Score
10/10
Malware Config
Signatures
-
Detect Neshta payload 1 IoCs
-
Detects executables embedding registry key / value combination indicative of disabling Windows Defender features 1 IoCs
-
Neshta family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
8ffdb1ae666b00aac0542b542ea341d43e3f2a5f13ca907f11c650390186bb51
Headers
Sections