General
-
Target
6310dd32dc5deefd1c980d2c05a118076f48f43c4107b9c48b89ef2b1ddfb042
-
Size
284KB
-
Sample
221001-wjlwbsaebp
-
MD5
6d5bf7d9775e399f36cd42c55b4b94f7
-
SHA1
b4d32921b0c6127c4cefd2b2cec3e518ea372ef7
-
SHA256
6310dd32dc5deefd1c980d2c05a118076f48f43c4107b9c48b89ef2b1ddfb042
-
SHA512
bb56d5060ed23f11dea1d9881cd090c0a019114b58f6cd21cad77cb6fc96990c08410cd4a9ab8adc8a59fc8bfee22313e7831ab5832a79afcd46cee27925c52f
-
SSDEEP
6144:PuaMbxxwcPfcG7eCL4t9xj1tvi4EkskGEB5SJsp3xbKvb:lSP0G7xk9xMksI/U
Malware Config
Targets
-
-
Target
6310dd32dc5deefd1c980d2c05a118076f48f43c4107b9c48b89ef2b1ddfb042
-
Size
284KB
-
MD5
6d5bf7d9775e399f36cd42c55b4b94f7
-
SHA1
b4d32921b0c6127c4cefd2b2cec3e518ea372ef7
-
SHA256
6310dd32dc5deefd1c980d2c05a118076f48f43c4107b9c48b89ef2b1ddfb042
-
SHA512
bb56d5060ed23f11dea1d9881cd090c0a019114b58f6cd21cad77cb6fc96990c08410cd4a9ab8adc8a59fc8bfee22313e7831ab5832a79afcd46cee27925c52f
-
SSDEEP
6144:PuaMbxxwcPfcG7eCL4t9xj1tvi4EkskGEB5SJsp3xbKvb:lSP0G7xk9xMksI/U
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-