General
-
Target
ea3e177b4ea25008ac2a4425cf2a147f342a95d460c450f0dc0fb91d1ab4060c
-
Size
1.2MB
-
Sample
220524-tyfxhsdbhk
-
MD5
ca11683033cc48478ab616dcc20e4fb5
-
SHA1
ebfb8d1f9ceaae24cedd1addbfefd487b923d136
-
SHA256
ea3e177b4ea25008ac2a4425cf2a147f342a95d460c450f0dc0fb91d1ab4060c
-
SHA512
fc6cf26b30b2eeb21d1241118e6c51ffb12b6865c6d1d8432ff0cbfae035f6515abdc1d78443e5f174df3ef2416a88c4ad134a9607053b46116d1915fcab8637
Malware Config
Targets
-
-
Target
ea3e177b4ea25008ac2a4425cf2a147f342a95d460c450f0dc0fb91d1ab4060c
-
Size
1.2MB
-
MD5
ca11683033cc48478ab616dcc20e4fb5
-
SHA1
ebfb8d1f9ceaae24cedd1addbfefd487b923d136
-
SHA256
ea3e177b4ea25008ac2a4425cf2a147f342a95d460c450f0dc0fb91d1ab4060c
-
SHA512
fc6cf26b30b2eeb21d1241118e6c51ffb12b6865c6d1d8432ff0cbfae035f6515abdc1d78443e5f174df3ef2416a88c4ad134a9607053b46116d1915fcab8637
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-