General
-
Target
7d669f874028b993c8730dba69cb32e36aa665426fa8244a7e3d0fcab7b6b5a6
-
Size
899KB
-
Sample
221119-ngq39shd35
-
MD5
1c171fab1e78fa70a01ee21e30975f0a
-
SHA1
f92145b312ec8d0ef148824b1fd6839f54b3f2ce
-
SHA256
7d669f874028b993c8730dba69cb32e36aa665426fa8244a7e3d0fcab7b6b5a6
-
SHA512
9245e565bb4e8b8b78d0ad950c424df866343b3101e3a6a168abd1363173aa27c0605087c1090d5d8dee7d5ac5ea0bb0e00b189f9900d4d5e90408a16e8e7f6c
-
SSDEEP
24576:Q7v1HTNnk4A6EfEuCqwWFjSkI25Wc++kND7J:QxTNnk4EEuCqwDkjC+63J
Malware Config
Targets
-
-
Target
7d669f874028b993c8730dba69cb32e36aa665426fa8244a7e3d0fcab7b6b5a6
-
Size
899KB
-
MD5
1c171fab1e78fa70a01ee21e30975f0a
-
SHA1
f92145b312ec8d0ef148824b1fd6839f54b3f2ce
-
SHA256
7d669f874028b993c8730dba69cb32e36aa665426fa8244a7e3d0fcab7b6b5a6
-
SHA512
9245e565bb4e8b8b78d0ad950c424df866343b3101e3a6a168abd1363173aa27c0605087c1090d5d8dee7d5ac5ea0bb0e00b189f9900d4d5e90408a16e8e7f6c
-
SSDEEP
24576:Q7v1HTNnk4A6EfEuCqwWFjSkI25Wc++kND7J:QxTNnk4EEuCqwDkjC+63J
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-