General
-
Target
96989e9ca7826a0c4546ecb5f0b3b9e7ea2e85c4bd2c92cac2110a2d0beeb175
-
Size
181KB
-
Sample
221119-3bx2ysfb83
-
MD5
1adb2dca69c46783d80f692c9d71a120
-
SHA1
b54579a1884b5bf6e60e98f434d260f65068b26b
-
SHA256
96989e9ca7826a0c4546ecb5f0b3b9e7ea2e85c4bd2c92cac2110a2d0beeb175
-
SHA512
34e0413e08c6903a3ee8f6c04353e1fa0f00fb9fdfc21b9d6e3da2a8483a71599211c6740c122de1a2798c3a773de500589ee322565c5c922bd7926c3b8dca24
-
SSDEEP
3072:zr8WDrC1GPGJa+mMsMu5ix/OS06YG5FH+2fVqSjvaD:Pu1G+JaXDzS3YOhqSjk
Malware Config
Targets
-
-
Target
96989e9ca7826a0c4546ecb5f0b3b9e7ea2e85c4bd2c92cac2110a2d0beeb175
-
Size
181KB
-
MD5
1adb2dca69c46783d80f692c9d71a120
-
SHA1
b54579a1884b5bf6e60e98f434d260f65068b26b
-
SHA256
96989e9ca7826a0c4546ecb5f0b3b9e7ea2e85c4bd2c92cac2110a2d0beeb175
-
SHA512
34e0413e08c6903a3ee8f6c04353e1fa0f00fb9fdfc21b9d6e3da2a8483a71599211c6740c122de1a2798c3a773de500589ee322565c5c922bd7926c3b8dca24
-
SSDEEP
3072:zr8WDrC1GPGJa+mMsMu5ix/OS06YG5FH+2fVqSjvaD:Pu1G+JaXDzS3YOhqSjk
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-