General
-
Target
8e5bdb1635285b45d05487588ab7c8a345ce6680917fb11202afa5b2f227459f
-
Size
939KB
-
Sample
220524-azew3aadb8
-
MD5
929d48fea54e7ef512c288efb3904116
-
SHA1
29d4565e8f5901dd8dd489f8c422e72a9969d832
-
SHA256
8e5bdb1635285b45d05487588ab7c8a345ce6680917fb11202afa5b2f227459f
-
SHA512
331dc004942e96c6afb0803d9cc1ffdcce0bdb6b70fd3ef484537b1e4775dcbc590327cf480e08b0c3ebb5457bff0b997ae5a6371b845bde7a9a93c5a20ac6fa
Malware Config
Targets
-
-
Target
8e5bdb1635285b45d05487588ab7c8a345ce6680917fb11202afa5b2f227459f
-
Size
939KB
-
MD5
929d48fea54e7ef512c288efb3904116
-
SHA1
29d4565e8f5901dd8dd489f8c422e72a9969d832
-
SHA256
8e5bdb1635285b45d05487588ab7c8a345ce6680917fb11202afa5b2f227459f
-
SHA512
331dc004942e96c6afb0803d9cc1ffdcce0bdb6b70fd3ef484537b1e4775dcbc590327cf480e08b0c3ebb5457bff0b997ae5a6371b845bde7a9a93c5a20ac6fa
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-