Overview

overview

10

Static

static

10

2024-10-21...ta.exe

windows7-x64

7

2024-10-21...ta.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-10-21_afd9e3fb138eecec611d42f073bc44bc_mafia_neshta

  • Size

    579KB

  • Sample

    241021-l8dada1gnk

  • MD5

    afd9e3fb138eecec611d42f073bc44bc

  • SHA1

    877523b64626ebd8fa50b3eb0214314f63d41649

  • SHA256

    e53a4aaad552ff79195737b6efe54cc1b6fc81945c023bee4a51e53e67c34550

  • SHA512

    92844bb5432d9f329f2104dafa67e8e31d8be8fb436df1a7aedd5d52d6335a6edccc7de6de1670a723b06bda687fd7f9d425be05bf4d70286b0deaa9e4bb90fc

  • SSDEEP

    12288:G7v7ICAUWM5W8MzRzF7v7K7v7u7v7u7v7w:GD7IC/Wn8UlFD7KD7uD7uD7w

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2024-10-21_afd9e3fb138eecec611d42f073bc44bc_mafia_neshta

    • Size

      579KB

    • MD5

      afd9e3fb138eecec611d42f073bc44bc

    • SHA1

      877523b64626ebd8fa50b3eb0214314f63d41649

    • SHA256

      e53a4aaad552ff79195737b6efe54cc1b6fc81945c023bee4a51e53e67c34550

    • SHA512

      92844bb5432d9f329f2104dafa67e8e31d8be8fb436df1a7aedd5d52d6335a6edccc7de6de1670a723b06bda687fd7f9d425be05bf4d70286b0deaa9e4bb90fc

    • SSDEEP

      12288:G7v7ICAUWM5W8MzRzF7v7K7v7u7v7u7v7w:GD7IC/Wn8UlFD7KD7uD7uD7w

    Score
    7/10
    persistencespywarestealerdiscovery

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks