Overview

overview

10

Static

static

10

80beff254f...18.exe

windows7-x64

10

80beff254f...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    80beff254f41c0cf6c7bfc81a59f2ef2_JaffaCakes118

  • Size

    40KB

  • Sample

    241031-afl62avaqb

  • MD5

    80beff254f41c0cf6c7bfc81a59f2ef2

  • SHA1

    81e1dc3a5beeb71e5e85e839fffc40dfeb24f118

  • SHA256

    75a5d420154fde19a6cf8c40961ca028300f4cb794d63ad88143b2f6855d0082

  • SHA512

    1936217fa1dded9bf41ddde57d18b0b1693a8f9d4b7fccaeeee4c02df17abbea938add42d88526871e3cdb6ff7c1913d03afad24f7d54e399a9c93f083acbbe7

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJMvcGFcH:JxqjQ+P04wsmJCHvcGo

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      80beff254f41c0cf6c7bfc81a59f2ef2_JaffaCakes118

    • Size

      40KB

    • MD5

      80beff254f41c0cf6c7bfc81a59f2ef2

    • SHA1

      81e1dc3a5beeb71e5e85e839fffc40dfeb24f118

    • SHA256

      75a5d420154fde19a6cf8c40961ca028300f4cb794d63ad88143b2f6855d0082

    • SHA512

      1936217fa1dded9bf41ddde57d18b0b1693a8f9d4b7fccaeeee4c02df17abbea938add42d88526871e3cdb6ff7c1913d03afad24f7d54e399a9c93f083acbbe7

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJMvcGFcH:JxqjQ+P04wsmJCHvcGo

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks