Overview

overview

10

Static

static

10

2025-04-19...ms.exe

windows10-2004-x64

10

2025-04-19...ms.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-19_49ec5219c84f445dbace71ff737a96a6_black-basta_elex_neshta_ngrbot_skypams

  • Size

    5.3MB

  • MD5

    49ec5219c84f445dbace71ff737a96a6

  • SHA1

    1152ca6103bcf5c9c1aae44600e6417dcd3b7e75

  • SHA256

    4fa578e238c515dab44911153286bbf7ca84d1152c53cca1cb662ea1f1ec86cf

  • SHA512

    3cb6e7d280f1c1bede1b0f062a4cfab20fb88300c5184beddf61acda3cd97b89eb783c74999cbe21850427c04431dc6ea8b5751723bc4dcf91b2e825d6184102

  • SSDEEP

    98304:6anVKTpTxzqMqGkBAgjJ3U/c+PLHV0ZNyxo:/wtx2MRkBTjJ+5DHWZNyW

Score
10/10
neshtaardamax

Malware Config

Signatures

  • Ardamax family
    ardamax
  • Ardamax main executable 1 IoCs
  • Detect Neshta payload 1 IoCs
  • Neshta family
    neshta
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2025-04-19_49ec5219c84f445dbace71ff737a96a6_black-basta_elex_neshta_ngrbot_skypams
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections