General
-
Target
f53faffa9c2aa107b1c0724b3e5ec83a2e6aa07d868bb9b0ea1f830fed8d158a
-
Size
718KB
-
Sample
221001-wjqvaaaecj
-
MD5
61805bedbabeec7679234a373cc86160
-
SHA1
7cdde50b86dcbd325082a90462883f0b0d62efb1
-
SHA256
f53faffa9c2aa107b1c0724b3e5ec83a2e6aa07d868bb9b0ea1f830fed8d158a
-
SHA512
3f5db698134f29dc75c4ea4a97443a58a3eceb5afe138fa4dab3ea6edfc860bd0b7dc27793a2c6b384276570703b76b8e9f741b4875720318f56819293bb9877
-
SSDEEP
12288:7f67rYSHwrPx37ezH/A6YFgkGsA1VM0rNZToRl/4zZJxyx9Fc6:7f67MSQrPx37ezH/A6mGP1V/gkex9F
Malware Config
Targets
-
-
Target
f53faffa9c2aa107b1c0724b3e5ec83a2e6aa07d868bb9b0ea1f830fed8d158a
-
Size
718KB
-
MD5
61805bedbabeec7679234a373cc86160
-
SHA1
7cdde50b86dcbd325082a90462883f0b0d62efb1
-
SHA256
f53faffa9c2aa107b1c0724b3e5ec83a2e6aa07d868bb9b0ea1f830fed8d158a
-
SHA512
3f5db698134f29dc75c4ea4a97443a58a3eceb5afe138fa4dab3ea6edfc860bd0b7dc27793a2c6b384276570703b76b8e9f741b4875720318f56819293bb9877
-
SSDEEP
12288:7f67rYSHwrPx37ezH/A6YFgkGsA1VM0rNZToRl/4zZJxyx9Fc6:7f67MSQrPx37ezH/A6mGP1V/gkex9F
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-