Overview

overview

10

Static

static

3

2eb520ea2d...aN.exe

windows7-x64

10

2eb520ea2d...aN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2eb520ea2d65108561f7924548c477710c78e3edb533c463cbd62163d510526aN

  • Size

    40KB

  • Sample

    241018-ebvptsybjm

  • MD5

    9904ab43a6ef6343422668dba5b6cf20

  • SHA1

    16a299b31a6c8c206b5d606fb7f6f8a5dc20fde9

  • SHA256

    2eb520ea2d65108561f7924548c477710c78e3edb533c463cbd62163d510526a

  • SHA512

    15bc84fdbdf4d3cca03950212aac705183ad36799ddd0c4458e25ba01baf770698ea5f2c0b296c8c3f1fc9a363244e85fc1e10e55aab39340e79ab454e48baa5

  • SSDEEP

    768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ:yxqjQ+P04wsZLnDrC

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2eb520ea2d65108561f7924548c477710c78e3edb533c463cbd62163d510526aN

    • Size

      40KB

    • MD5

      9904ab43a6ef6343422668dba5b6cf20

    • SHA1

      16a299b31a6c8c206b5d606fb7f6f8a5dc20fde9

    • SHA256

      2eb520ea2d65108561f7924548c477710c78e3edb533c463cbd62163d510526a

    • SHA512

      15bc84fdbdf4d3cca03950212aac705183ad36799ddd0c4458e25ba01baf770698ea5f2c0b296c8c3f1fc9a363244e85fc1e10e55aab39340e79ab454e48baa5

    • SSDEEP

      768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ:yxqjQ+P04wsZLnDrC

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks