Overview

overview

10

Static

static

10

dc8ff77808...9N.exe

windows7-x64

10

dc8ff77808...9N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dc8ff778084210ed4598a2e7d37588e401328c3306fd01fb6869eacb95fcfd09N.exe

  • Size

    40KB

  • Sample

    241226-n9td4avqal

  • MD5

    884857ed5164ed0ca8ec00bb90a4cea0

  • SHA1

    56a0bbecf8b6f33b4b83113308631a26d80b1b9f

  • SHA256

    dc8ff778084210ed4598a2e7d37588e401328c3306fd01fb6869eacb95fcfd09

  • SHA512

    ab01a24ef708f3a7906c2cf8a485b8b39305980f880e9a58d02b3c5d2bd377cfc27f4e5fa0a83530f9364c3455627a1efa6766fc4a075927fe61eeb397d08bac

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJfPl24:JxqjQ+P04wsmJCyPs4

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      dc8ff778084210ed4598a2e7d37588e401328c3306fd01fb6869eacb95fcfd09N.exe

    • Size

      40KB

    • MD5

      884857ed5164ed0ca8ec00bb90a4cea0

    • SHA1

      56a0bbecf8b6f33b4b83113308631a26d80b1b9f

    • SHA256

      dc8ff778084210ed4598a2e7d37588e401328c3306fd01fb6869eacb95fcfd09

    • SHA512

      ab01a24ef708f3a7906c2cf8a485b8b39305980f880e9a58d02b3c5d2bd377cfc27f4e5fa0a83530f9364c3455627a1efa6766fc4a075927fe61eeb397d08bac

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJfPl24:JxqjQ+P04wsmJCyPs4

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks