Overview

overview

10

Static

static

10

b3b05414ab...dN.exe

windows7-x64

10

b3b05414ab...dN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b3b05414abb9fa3f61b0baedfe8f8db73032a222cc4a6ea198987fcd08f34b6dN.exe

  • Size

    40KB

  • Sample

    241126-h24xzaxkhn

  • MD5

    46350ecbf8b9483a1eab65c23ff51ef0

  • SHA1

    3673a4e5fbc4a87df9039c6b61afa29a3a1e13b9

  • SHA256

    b3b05414abb9fa3f61b0baedfe8f8db73032a222cc4a6ea198987fcd08f34b6d

  • SHA512

    60cf751190a4ccf81ea2db44cb6e4858ddf62fc5ee89a93f5d96f770498365c652626bec74f4b3aa39ddc39b257161ad284a289233c5616480f146b5feca9182

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJMj/quI:JxqjQ+P04wsmJCbLc

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      b3b05414abb9fa3f61b0baedfe8f8db73032a222cc4a6ea198987fcd08f34b6dN.exe

    • Size

      40KB

    • MD5

      46350ecbf8b9483a1eab65c23ff51ef0

    • SHA1

      3673a4e5fbc4a87df9039c6b61afa29a3a1e13b9

    • SHA256

      b3b05414abb9fa3f61b0baedfe8f8db73032a222cc4a6ea198987fcd08f34b6d

    • SHA512

      60cf751190a4ccf81ea2db44cb6e4858ddf62fc5ee89a93f5d96f770498365c652626bec74f4b3aa39ddc39b257161ad284a289233c5616480f146b5feca9182

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJMj/quI:JxqjQ+P04wsmJCbLc

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks