Overview

overview

10

Static

static

10

946d8add50...3N.exe

windows7-x64

10

946d8add50...3N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    946d8add503b236e44dd9d841da0e29d90dca1eca9a8c38648ce7f746cd7ef83N

  • Size

    40KB

  • Sample

    241106-gsbdmaxqar

  • MD5

    58f7b251756c13c4ddc94dd6f0c97bf0

  • SHA1

    38a4c6f925b5fd79418d713089067ff367668855

  • SHA256

    946d8add503b236e44dd9d841da0e29d90dca1eca9a8c38648ce7f746cd7ef83

  • SHA512

    1fc7ce7b174a3d9bd5408313d4d626bf60abfe652cd7cc60d9f7c73f864bdb8533d8ac81561e57002c3c6a591abefbc71114df8156ff232176003c2598d14349

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJfVX:JxqjQ+P04wsmJCU

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      946d8add503b236e44dd9d841da0e29d90dca1eca9a8c38648ce7f746cd7ef83N

    • Size

      40KB

    • MD5

      58f7b251756c13c4ddc94dd6f0c97bf0

    • SHA1

      38a4c6f925b5fd79418d713089067ff367668855

    • SHA256

      946d8add503b236e44dd9d841da0e29d90dca1eca9a8c38648ce7f746cd7ef83

    • SHA512

      1fc7ce7b174a3d9bd5408313d4d626bf60abfe652cd7cc60d9f7c73f864bdb8533d8ac81561e57002c3c6a591abefbc71114df8156ff232176003c2598d14349

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJfVX:JxqjQ+P04wsmJCU

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks