Overview

overview

10

Static

static

10

564bccc2cf...a0.exe

windows7-x64

10

564bccc2cf...a0.exe

windows10-2004-x64

10

Resubmissions

30/03/2025, 00:32 UTC

250330-av58fsyk17 10

30/03/2025, 00:31 UTC

250330-at6slawvbx 10

04/03/2025, 10:29 UTC

250304-mjqd3sypv4 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    564bccc2cfbd6f6f0ec6951dfed4f68f8ead7ea39b6777bbe512aff6f50f28a0.exe

  • Size

    1.1MB

  • Sample

    250304-mjqd3sypv4

  • MD5

    3fb887b5886aaf9b3b5103d868c56c84

  • SHA1

    7385b57e89da35b3aa2c3bbe26623c4179fc1abc

  • SHA256

    564bccc2cfbd6f6f0ec6951dfed4f68f8ead7ea39b6777bbe512aff6f50f28a0

  • SHA512

    904f823dd256c256045f85f9ab0a0ac355689313ee57de58e8090a3e40d6ca92947229002ee7c6e828403ace4dd2e9606063d18fcb466f52e9f8f1e2cb03c937

  • SSDEEP

    24576:yBu2XV04jnHW8VwBYcOa3sM6zlYzLhQ0zJ68VQWWRWqMOoU:qu4jHmScOcsvWkq3+

Score
10/10
neshtadiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      564bccc2cfbd6f6f0ec6951dfed4f68f8ead7ea39b6777bbe512aff6f50f28a0.exe

    • Size

      1.1MB

    • MD5

      3fb887b5886aaf9b3b5103d868c56c84

    • SHA1

      7385b57e89da35b3aa2c3bbe26623c4179fc1abc

    • SHA256

      564bccc2cfbd6f6f0ec6951dfed4f68f8ead7ea39b6777bbe512aff6f50f28a0

    • SHA512

      904f823dd256c256045f85f9ab0a0ac355689313ee57de58e8090a3e40d6ca92947229002ee7c6e828403ace4dd2e9606063d18fcb466f52e9f8f1e2cb03c937

    • SSDEEP

      24576:yBu2XV04jnHW8VwBYcOa3sM6zlYzLhQ0zJ68VQWWRWqMOoU:qu4jHmScOcsvWkq3+

    Score
    10/10
    neshtadiscoverypersistencespywarestealer

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

      persistencespywareneshta

    • Neshta family

      neshta

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.