Overview

overview

10

Static

static

3

5a62085056...2N.exe

windows7-x64

10

5a62085056...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a62085056d0eba60885ddadd34045ec4660110d15e8a3a74f0d6af2144a0752N.exe

  • Size

    40KB

  • Sample

    241129-rfj54szjgw

  • MD5

    cca706f709aae34ddd969fc1940274f0

  • SHA1

    de75cb30cb52b9284ca4d514907b45966d99bb01

  • SHA256

    5a62085056d0eba60885ddadd34045ec4660110d15e8a3a74f0d6af2144a0752

  • SHA512

    8ab301133592ee15d348341c6fa82b03147f6753139fc0d6cb0dad429b257cec0ef7187769aec562b31e079d3ef37fd81f875ef1e37f3bb2d29d423af2233062

  • SSDEEP

    768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJk0YA:yxqjQ+P04wsZLnDrCQY

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      5a62085056d0eba60885ddadd34045ec4660110d15e8a3a74f0d6af2144a0752N.exe

    • Size

      40KB

    • MD5

      cca706f709aae34ddd969fc1940274f0

    • SHA1

      de75cb30cb52b9284ca4d514907b45966d99bb01

    • SHA256

      5a62085056d0eba60885ddadd34045ec4660110d15e8a3a74f0d6af2144a0752

    • SHA512

      8ab301133592ee15d348341c6fa82b03147f6753139fc0d6cb0dad429b257cec0ef7187769aec562b31e079d3ef37fd81f875ef1e37f3bb2d29d423af2233062

    • SSDEEP

      768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJk0YA:yxqjQ+P04wsZLnDrCQY

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks