neshta | e57e1c3fa9fbf0bfcbbccdcffc0199c3b7d898f4ccaab015a59b0f8a45c6628e | Triage

Submit
Reports

Overview

overview

Static

static

9ee78e3852...18.exe

windows7-x64

9ee78e3852...18.exe

windows10-2004-x64

Sharing

General

Target

9ee78e38523d5da2e5184434679ad477_JaffaCakes118
Size

1.3MB
Sample

241126-a81vwsvpg1
MD5

9ee78e38523d5da2e5184434679ad477
SHA1

791c85e0f3c23daac93c52fe09f177afc8c9295e
SHA256

e57e1c3fa9fbf0bfcbbccdcffc0199c3b7d898f4ccaab015a59b0f8a45c6628e
SHA512

49d10651789c293533467beb96895017cb753ca6458a83eed8f6c4c7b889e2217bd9bf9025cb6fafd5fd2d59078cd2704cc8f13dc6c818aa5e1ce942a6e649d5
SSDEEP

24576:O92/4fLFlOs7tCwDu2LrTy/p5euXO3yAFGIEddfEX1uP7waWnDREXDxWMI/7A:hunewDgphyFKGAzEnDWDxzI/7A

Score

10^/10

neshta discovery persistence spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

9ee78e38523d5da2e5184434679ad477_JaffaCakes118.exe

Resource

win7-20240903-en

neshta discovery persistence spyware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ee78e38523d5da2e5184434679ad477_JaffaCakes118.exe

Resource

win10v2004-20241007-en

neshta discovery persistence spyware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  9ee78e38523d5da2e5184434679ad477_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  9ee78e38523d5da2e5184434679ad477
- SHA1
  
  791c85e0f3c23daac93c52fe09f177afc8c9295e
- SHA256
  
  e57e1c3fa9fbf0bfcbbccdcffc0199c3b7d898f4ccaab015a59b0f8a45c6628e
- SHA512
  
  49d10651789c293533467beb96895017cb753ca6458a83eed8f6c4c7b889e2217bd9bf9025cb6fafd5fd2d59078cd2704cc8f13dc6c818aa5e1ce942a6e649d5
- SSDEEP
  
  24576:O92/4fLFlOs7tCwDu2LrTy/p5euXO3yAFGIEddfEX1uP7waWnDREXDxWMI/7A:hunewDgphyFKGAzEnDWDxzI/7A
Score

10^/10

neshta discovery persistence spyware
- Detect Neshta payload
- Neshta
  Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
  persistence spyware neshta
- Neshta family
  neshta
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

neshtadiscoverypersistencespyware

behavioral2

neshtadiscoverypersistencespyware

© 2018-2025

Terms | Privacy