General

  • Target

    0f0019486071e18a105163826d6c0ad362f03c629a2a6b1a3ea7174fba237694

  • Size

    336KB

  • Sample

    221002-fpbpjshfg4

  • MD5

    73b782f01e822d2fd1fc84cee409ccb0

  • SHA1

    b705b4168cf204cf9e5bfc4bc3c06e0be7771543

  • SHA256

    0f0019486071e18a105163826d6c0ad362f03c629a2a6b1a3ea7174fba237694

  • SHA512

    d8ce3598fbb1ddcc4458c48b3b75eb5ba0091329174b6eaacdb1a3d1cb867f56706e7b2b3e0cdc24d7dcd2c207ca0c63b001288fb91711985a01427f8f41022a

  • SSDEEP

    6144:k9Zkr4hW8jlL3TcvhcodjERFZw2CMyf7fgGtxO5Y0b+fXNobtOVO:8FJj1ns2CMyEGbBXNoJIO

Malware Config

Targets

    • Target

      0f0019486071e18a105163826d6c0ad362f03c629a2a6b1a3ea7174fba237694

    • Size

      336KB

    • MD5

      73b782f01e822d2fd1fc84cee409ccb0

    • SHA1

      b705b4168cf204cf9e5bfc4bc3c06e0be7771543

    • SHA256

      0f0019486071e18a105163826d6c0ad362f03c629a2a6b1a3ea7174fba237694

    • SHA512

      d8ce3598fbb1ddcc4458c48b3b75eb5ba0091329174b6eaacdb1a3d1cb867f56706e7b2b3e0cdc24d7dcd2c207ca0c63b001288fb91711985a01427f8f41022a

    • SSDEEP

      6144:k9Zkr4hW8jlL3TcvhcodjERFZw2CMyf7fgGtxO5Y0b+fXNobtOVO:8FJj1ns2CMyEGbBXNoJIO

    • Modifies system executable filetype association

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks