General
-
Target
8288159387653d5eedd9600875c474b88359a52948fea6ae68efc1db463d4931
-
Size
541KB
-
Sample
221001-wkb3hshec7
-
MD5
6fb2037a874cbe58287e8478052b47b0
-
SHA1
ecdf582923a1d692738a59d35f3df915ffc1f69f
-
SHA256
8288159387653d5eedd9600875c474b88359a52948fea6ae68efc1db463d4931
-
SHA512
c6c5ad148ed3d8e4efcdfeb3c82991dd35178f730fa1b40e8d1a8e02cbeb581fd2ab3b01626ac652858d68f9906109abbc040fd967e7365de607c62726a2f707
-
SSDEEP
6144:k9w4zauV/k4RlZHFm1ulePxZf4EX12ihmEhSM0gOhiw8yib5um/ejiqLUzwaUDG6:P440X8xZgmdJhSBhiw8LYLUVUDz3DE
Malware Config
Targets
-
-
Target
8288159387653d5eedd9600875c474b88359a52948fea6ae68efc1db463d4931
-
Size
541KB
-
MD5
6fb2037a874cbe58287e8478052b47b0
-
SHA1
ecdf582923a1d692738a59d35f3df915ffc1f69f
-
SHA256
8288159387653d5eedd9600875c474b88359a52948fea6ae68efc1db463d4931
-
SHA512
c6c5ad148ed3d8e4efcdfeb3c82991dd35178f730fa1b40e8d1a8e02cbeb581fd2ab3b01626ac652858d68f9906109abbc040fd967e7365de607c62726a2f707
-
SSDEEP
6144:k9w4zauV/k4RlZHFm1ulePxZf4EX12ihmEhSM0gOhiw8yib5um/ejiqLUzwaUDG6:P440X8xZgmdJhSBhiw8LYLUVUDz3DE
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-