General

  • Target

    866d0239c58cf896086cc2acfb56b1f57b53d8b34b94fccafafb5bbd8222fbccN.exe

  • Size

    40KB

  • Sample

    241216-ezznpavrdk

  • MD5

    6adf81811b303c2f9056ed681a20eac0

  • SHA1

    7fe6752569490e237ac8749e466aed686f649145

  • SHA256

    866d0239c58cf896086cc2acfb56b1f57b53d8b34b94fccafafb5bbd8222fbcc

  • SHA512

    6453f6619b67bcc90c8dbbaef2dbd3a4be32377c18d73c9954adec6730a05646f6729c448a116c2179d8280af3262c9aece94be6ee06b12d2c11da129c2685b3

  • SSDEEP

    768:KyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJ:9xqjQ+P04wsmJC

Malware Config

Targets

    • Target

      866d0239c58cf896086cc2acfb56b1f57b53d8b34b94fccafafb5bbd8222fbccN.exe

    • Size

      40KB

    • MD5

      6adf81811b303c2f9056ed681a20eac0

    • SHA1

      7fe6752569490e237ac8749e466aed686f649145

    • SHA256

      866d0239c58cf896086cc2acfb56b1f57b53d8b34b94fccafafb5bbd8222fbcc

    • SHA512

      6453f6619b67bcc90c8dbbaef2dbd3a4be32377c18d73c9954adec6730a05646f6729c448a116c2179d8280af3262c9aece94be6ee06b12d2c11da129c2685b3

    • SSDEEP

      768:KyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJ:9xqjQ+P04wsmJC

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Neshta family

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks