Overview

overview

10

Static

static

3

b742e1a325...18.exe

windows7-x64

10

b742e1a325...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b742e1a3252cc79bb8de1dbfba66e6ed_JaffaCakes118

  • Size

    40KB

  • Sample

    241202-g8e2raynhn

  • MD5

    b742e1a3252cc79bb8de1dbfba66e6ed

  • SHA1

    03771fd8cb9a6ef246bacb2d70f15a62b01998cd

  • SHA256

    f4ecfcb85e29b6cbb4036275369739e8076163e8d68821b5de831d27b7473cde

  • SHA512

    d3fe7b7572639997fb2406fd08145de2e08b3d6ca9f5afd413ff708618a4aaae0382db487111f2031e74429ead994d11a52cb329626801c8e38e786918be2dbf

  • SSDEEP

    768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJW:yxqjQ+P04wsZLnDrC

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      b742e1a3252cc79bb8de1dbfba66e6ed_JaffaCakes118

    • Size

      40KB

    • MD5

      b742e1a3252cc79bb8de1dbfba66e6ed

    • SHA1

      03771fd8cb9a6ef246bacb2d70f15a62b01998cd

    • SHA256

      f4ecfcb85e29b6cbb4036275369739e8076163e8d68821b5de831d27b7473cde

    • SHA512

      d3fe7b7572639997fb2406fd08145de2e08b3d6ca9f5afd413ff708618a4aaae0382db487111f2031e74429ead994d11a52cb329626801c8e38e786918be2dbf

    • SSDEEP

      768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJW:yxqjQ+P04wsZLnDrC

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks