General
-
Target
71c26db43a1522a5c211d75e97e8f300f8791fdeb55f94e8da495e219edc921d
-
Size
1012KB
-
Sample
221121-ngwczsca3w
-
MD5
21e5ba44859b6cb317cf86a55c696d90
-
SHA1
13609821e3bd39a7fe6eb06b9d46c4bdc02f8330
-
SHA256
71c26db43a1522a5c211d75e97e8f300f8791fdeb55f94e8da495e219edc921d
-
SHA512
d7ab7ea146a8b3155b5d00e1ae5a1511eaec51ea2311f2390be06b8ef94f9ded67c602a6df13bc0a54acd5f75e371e9cce756a6197ed9307ecbd6ea3d1e346f4
-
SSDEEP
12288:T6y2PbZkOrnhK0hOo0+wtGD9DmZYpmNvvtvlmuTfatbyUJiyOP:T6lPPrnhbhx8GD9D0YQ9vlvcJi9P
Malware Config
Targets
-
-
Target
71c26db43a1522a5c211d75e97e8f300f8791fdeb55f94e8da495e219edc921d
-
Size
1012KB
-
MD5
21e5ba44859b6cb317cf86a55c696d90
-
SHA1
13609821e3bd39a7fe6eb06b9d46c4bdc02f8330
-
SHA256
71c26db43a1522a5c211d75e97e8f300f8791fdeb55f94e8da495e219edc921d
-
SHA512
d7ab7ea146a8b3155b5d00e1ae5a1511eaec51ea2311f2390be06b8ef94f9ded67c602a6df13bc0a54acd5f75e371e9cce756a6197ed9307ecbd6ea3d1e346f4
-
SSDEEP
12288:T6y2PbZkOrnhK0hOo0+wtGD9DmZYpmNvvtvlmuTfatbyUJiyOP:T6lPPrnhbhx8GD9D0YQ9vlvcJi9P
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-