General
-
Target
06aaaada02bb06b63c6020cf22adbcf4e596b058a265fe177acffc2b0f62915c
-
Size
753KB
-
Sample
221118-2dlw2aba66
-
MD5
1cc82f85d8d6f02d2b672fbb3f829400
-
SHA1
51f799ca6705233f69be9d3b5f3d1693d9d8524d
-
SHA256
06aaaada02bb06b63c6020cf22adbcf4e596b058a265fe177acffc2b0f62915c
-
SHA512
ef4fe0f80d3a1675fd45dce5becfe78740922cbad0c87d01a315c9bdc4ba012f28fc431c1dfffaa9694320a1355c8f0176c45cd2774d6bbdddeb277a9ec28a6b
-
SSDEEP
12288:pqcYn5c/rPx37/zHBA6a5Ueyp2CrIEROlnrNORuiVB2mNRx9gkqTi:ccYn5c/rPx37/zHBA6pDp2mIEiiBRx9R
Malware Config
Targets
-
-
Target
06aaaada02bb06b63c6020cf22adbcf4e596b058a265fe177acffc2b0f62915c
-
Size
753KB
-
MD5
1cc82f85d8d6f02d2b672fbb3f829400
-
SHA1
51f799ca6705233f69be9d3b5f3d1693d9d8524d
-
SHA256
06aaaada02bb06b63c6020cf22adbcf4e596b058a265fe177acffc2b0f62915c
-
SHA512
ef4fe0f80d3a1675fd45dce5becfe78740922cbad0c87d01a315c9bdc4ba012f28fc431c1dfffaa9694320a1355c8f0176c45cd2774d6bbdddeb277a9ec28a6b
-
SSDEEP
12288:pqcYn5c/rPx37/zHBA6a5Ueyp2CrIEROlnrNORuiVB2mNRx9gkqTi:ccYn5c/rPx37/zHBA6pDp2mIEiiBRx9R
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-