General

  • Target

    2bcadfd84a5affac3b5a06beae524be9679d4a95beac8fde0e497e9ba4780309N.exe

  • Size

    40KB

  • Sample

    241216-srmwtatlgy

  • MD5

    d84eccce43bb1cc023cb5dc382a26920

  • SHA1

    77b91d38ce5693144c656063b511b5b1debbff01

  • SHA256

    2bcadfd84a5affac3b5a06beae524be9679d4a95beac8fde0e497e9ba4780309

  • SHA512

    200c29a6080b8d38574fc62ed70465cd942fd0d0375436f3ad071646993e2f2df28983ad5ec1eab96920b00dea119e1562c2c980223ae3a6f2e27a3c6e2ad67e

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJ:JxqjQ+P04wsmJC

Malware Config

Targets

    • Target

      2bcadfd84a5affac3b5a06beae524be9679d4a95beac8fde0e497e9ba4780309N.exe

    • Size

      40KB

    • MD5

      d84eccce43bb1cc023cb5dc382a26920

    • SHA1

      77b91d38ce5693144c656063b511b5b1debbff01

    • SHA256

      2bcadfd84a5affac3b5a06beae524be9679d4a95beac8fde0e497e9ba4780309

    • SHA512

      200c29a6080b8d38574fc62ed70465cd942fd0d0375436f3ad071646993e2f2df28983ad5ec1eab96920b00dea119e1562c2c980223ae3a6f2e27a3c6e2ad67e

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJ:JxqjQ+P04wsmJC

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Neshta family

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks