Overview

overview

10

Static

static

10

08e5f95137...6N.exe

windows7-x64

10

08e5f95137...6N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    08e5f9513756e0c62a44c24d23d39fecf8d6b01dfc0f3b60985d3b1156090786N

  • Size

    40KB

  • Sample

    241005-xt3ghavbra

  • MD5

    72d1e57223d96bf930008196b9799f40

  • SHA1

    0877670d97fa1a0aa3276f55673b6ea4ba591a12

  • SHA256

    08e5f9513756e0c62a44c24d23d39fecf8d6b01dfc0f3b60985d3b1156090786

  • SHA512

    bfff2fb58c7ea0b3f4d21b726add2315ed726d01f17a3452508dea5c398d4d5a380513a256065c7e4af2b63826b5432ee3d30c48e582d7a8e766e460136c00d3

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJLB:JxqjQ+P04wsmJCg

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      08e5f9513756e0c62a44c24d23d39fecf8d6b01dfc0f3b60985d3b1156090786N

    • Size

      40KB

    • MD5

      72d1e57223d96bf930008196b9799f40

    • SHA1

      0877670d97fa1a0aa3276f55673b6ea4ba591a12

    • SHA256

      08e5f9513756e0c62a44c24d23d39fecf8d6b01dfc0f3b60985d3b1156090786

    • SHA512

      bfff2fb58c7ea0b3f4d21b726add2315ed726d01f17a3452508dea5c398d4d5a380513a256065c7e4af2b63826b5432ee3d30c48e582d7a8e766e460136c00d3

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJLB:JxqjQ+P04wsmJCg

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks