Overview

overview

10

Static

static

10

9463d1fba4...18.exe

windows7-x64

10

9463d1fba4...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9463d1fba40c286cb7a836301816b0b5_JaffaCakes118

  • Size

    40KB

  • Sample

    241124-nmyqasxmgs

  • MD5

    9463d1fba40c286cb7a836301816b0b5

  • SHA1

    968396e226efb61da8775f3b3d1d62a59e27e7dc

  • SHA256

    5353d4fb4ba104b1023037e866ee75f86fb11a83db41ba33f440feac193777d5

  • SHA512

    66a66e19e5526dd4a995647c7d711eb4a43519c4302c6442fc51ecbcb151d6ae3206ed908d8bdf7895db650c9c0c0d47fa4bfc8a6febfea1b9b286558bdfdd9d

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJSExb2:JxqjQ+P04wsmJCZExa

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      9463d1fba40c286cb7a836301816b0b5_JaffaCakes118

    • Size

      40KB

    • MD5

      9463d1fba40c286cb7a836301816b0b5

    • SHA1

      968396e226efb61da8775f3b3d1d62a59e27e7dc

    • SHA256

      5353d4fb4ba104b1023037e866ee75f86fb11a83db41ba33f440feac193777d5

    • SHA512

      66a66e19e5526dd4a995647c7d711eb4a43519c4302c6442fc51ecbcb151d6ae3206ed908d8bdf7895db650c9c0c0d47fa4bfc8a6febfea1b9b286558bdfdd9d

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJSExb2:JxqjQ+P04wsmJCZExa

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks