General

  • Target

    645f7ae489369dac34027b7d2cf9a65e5b898067aaeb6fd921f3e6ba7b701960N

  • Size

    40KB

  • Sample

    241022-thzdxstape

  • MD5

    d0f5b32d5a4bc05df681bbb3efd75280

  • SHA1

    9a7a8b960c9485496853aee1e4ee72c70634f54d

  • SHA256

    645f7ae489369dac34027b7d2cf9a65e5b898067aaeb6fd921f3e6ba7b701960

  • SHA512

    f2b73c365efa22cc46e89a8b7d34e6a3f90ae72edfdf4a7ee74ce4e73f917692e8eb462eb374040bded01efc08a67a10429d53ad92ad384762c1bdbc20aa8964

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJOh2:JxqjQ+P04wsmJCl

Malware Config

Targets

    • Target

      645f7ae489369dac34027b7d2cf9a65e5b898067aaeb6fd921f3e6ba7b701960N

    • Size

      40KB

    • MD5

      d0f5b32d5a4bc05df681bbb3efd75280

    • SHA1

      9a7a8b960c9485496853aee1e4ee72c70634f54d

    • SHA256

      645f7ae489369dac34027b7d2cf9a65e5b898067aaeb6fd921f3e6ba7b701960

    • SHA512

      f2b73c365efa22cc46e89a8b7d34e6a3f90ae72edfdf4a7ee74ce4e73f917692e8eb462eb374040bded01efc08a67a10429d53ad92ad384762c1bdbc20aa8964

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJOh2:JxqjQ+P04wsmJCl

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks