Overview

overview

10

Static

static

3

719ded4816...18.exe

windows7-x64

10

719ded4816...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    719ded481666ad4bd529efc30c7fdfa9_JaffaCakes118

  • Size

    40KB

  • Sample

    241024-bancksxaqf

  • MD5

    719ded481666ad4bd529efc30c7fdfa9

  • SHA1

    70ee74dbe0e5534b6174561608bd65b980185606

  • SHA256

    0e363a7f5d4584c734fa18654cdb123d86eed394f5e8984a33dbd23d40047297

  • SHA512

    e80ee15c5855b1e2a4a82fb48545a23c1b3351f29c42c69b26440c8a34af84f0b9f4278d60a97f3b1f8ae4eadc7aa0a07e1611cbc8719b1c8b7b7b7314830f35

  • SSDEEP

    768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ:yxqjQ+P04wsZLnDrC

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      719ded481666ad4bd529efc30c7fdfa9_JaffaCakes118

    • Size

      40KB

    • MD5

      719ded481666ad4bd529efc30c7fdfa9

    • SHA1

      70ee74dbe0e5534b6174561608bd65b980185606

    • SHA256

      0e363a7f5d4584c734fa18654cdb123d86eed394f5e8984a33dbd23d40047297

    • SHA512

      e80ee15c5855b1e2a4a82fb48545a23c1b3351f29c42c69b26440c8a34af84f0b9f4278d60a97f3b1f8ae4eadc7aa0a07e1611cbc8719b1c8b7b7b7314830f35

    • SSDEEP

      768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ:yxqjQ+P04wsZLnDrC

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks