General
-
Target
1a25ccb1295b27a5b197be9647ccef60a682f0a3fe552597a72f21ef0f13c6a8
-
Size
554KB
-
Sample
221119-m8y3hsha36
-
MD5
24fbec03dd760b49ee9c43ebc7c14993
-
SHA1
515efc96e77f88b47e1f8997d76ebaaaebe1c8e6
-
SHA256
1a25ccb1295b27a5b197be9647ccef60a682f0a3fe552597a72f21ef0f13c6a8
-
SHA512
5cc923f8b2e8854d7959cc4990b62555ffc46fa879d8a582d7c53f5a6ac5a00c567ed9be6657e247b237bd8296f7edbc71331461f9e04ece8b5f780c97facdf8
-
SSDEEP
12288:PpemN8eLQYfTD4AqzDkOXZm6+/ehJy58J2vvruGgOiXvA:RVLD6DU/FiJ2vyGavA
Malware Config
Targets
-
-
Target
1a25ccb1295b27a5b197be9647ccef60a682f0a3fe552597a72f21ef0f13c6a8
-
Size
554KB
-
MD5
24fbec03dd760b49ee9c43ebc7c14993
-
SHA1
515efc96e77f88b47e1f8997d76ebaaaebe1c8e6
-
SHA256
1a25ccb1295b27a5b197be9647ccef60a682f0a3fe552597a72f21ef0f13c6a8
-
SHA512
5cc923f8b2e8854d7959cc4990b62555ffc46fa879d8a582d7c53f5a6ac5a00c567ed9be6657e247b237bd8296f7edbc71331461f9e04ece8b5f780c97facdf8
-
SSDEEP
12288:PpemN8eLQYfTD4AqzDkOXZm6+/ehJy58J2vvruGgOiXvA:RVLD6DU/FiJ2vyGavA
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-