Overview

overview

10

Static

static

10

87e92d979d...dN.exe

windows7-x64

10

87e92d979d...dN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    87e92d979dcf4d2479b8667715146d02708992d0a080a6ca6ce4882f516e86adN.exe

  • Size

    40KB

  • Sample

    241230-rry4eaxkgp

  • MD5

    b79e398dd44a366db7a6a18752599620

  • SHA1

    a5793bef244c12136a4f10e03bc23c2187de6c5a

  • SHA256

    87e92d979dcf4d2479b8667715146d02708992d0a080a6ca6ce4882f516e86ad

  • SHA512

    f17fff409b44172fae42f0e2835292bdcf11dad9ed51e5b1860a12af0aa3b6cbe23ae23d120b85da1c26564dcde761d8076b89c5f978931f983deddac36b8b8d

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJ:JxqjQ+P04wsmJC

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      87e92d979dcf4d2479b8667715146d02708992d0a080a6ca6ce4882f516e86adN.exe

    • Size

      40KB

    • MD5

      b79e398dd44a366db7a6a18752599620

    • SHA1

      a5793bef244c12136a4f10e03bc23c2187de6c5a

    • SHA256

      87e92d979dcf4d2479b8667715146d02708992d0a080a6ca6ce4882f516e86ad

    • SHA512

      f17fff409b44172fae42f0e2835292bdcf11dad9ed51e5b1860a12af0aa3b6cbe23ae23d120b85da1c26564dcde761d8076b89c5f978931f983deddac36b8b8d

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJ:JxqjQ+P04wsmJC

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks