General
-
Target
DUE SOA.exe
-
Size
614KB
-
Sample
211028-q4a2nsbfh4
-
MD5
e6839a4ad6eb043bd41052740c27e1f9
-
SHA1
a03ab63f5c070980be362d3b98bdd55f2574c228
-
SHA256
16cb5498c592fb2a32fa882aa0996591f067d77c50eedf69cda4d04ef93cab83
-
SHA512
2524dc118ccbaf7c5bdd462d460e15e7eafeab3cd5a67fdde591fccb5a8a1c6394e3cdec17e9c8fd2a1a9e1861792ce86f1f5c42a2d8f197a278b075559aa19e
Malware Config
Targets
-
-
Target
DUE SOA.exe
-
Size
614KB
-
MD5
e6839a4ad6eb043bd41052740c27e1f9
-
SHA1
a03ab63f5c070980be362d3b98bdd55f2574c228
-
SHA256
16cb5498c592fb2a32fa882aa0996591f067d77c50eedf69cda4d04ef93cab83
-
SHA512
2524dc118ccbaf7c5bdd462d460e15e7eafeab3cd5a67fdde591fccb5a8a1c6394e3cdec17e9c8fd2a1a9e1861792ce86f1f5c42a2d8f197a278b075559aa19e
Score10/10-
Detect Neshta Payload
-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-