General
-
Target
931bd5228b0ead55ac074159948c1b2129dcf4d70505286535f11182b2f2739d
-
Size
417KB
-
Sample
221123-wxl39agb5y
-
MD5
4566ba460ecb646e84cd2459da76b2e0
-
SHA1
1257f1f2aa59ce66ae5f1ddccb4ac1482f2ea986
-
SHA256
931bd5228b0ead55ac074159948c1b2129dcf4d70505286535f11182b2f2739d
-
SHA512
1c4bc63934ec8421f17f830980a782020a8462eda974bc89cc245ded5ea3a42269ee01b16dee9de5292e87b47a70b008b31383a1f4b347cc392db4be17850efd
-
SSDEEP
12288:bLQnmNSuVLW3ADVzRjS1V32b3nDtVqxQIq+5uy:XQn8SuVLW3ADVzRjU27DtVqxQIq+z
Malware Config
Targets
-
-
Target
931bd5228b0ead55ac074159948c1b2129dcf4d70505286535f11182b2f2739d
-
Size
417KB
-
MD5
4566ba460ecb646e84cd2459da76b2e0
-
SHA1
1257f1f2aa59ce66ae5f1ddccb4ac1482f2ea986
-
SHA256
931bd5228b0ead55ac074159948c1b2129dcf4d70505286535f11182b2f2739d
-
SHA512
1c4bc63934ec8421f17f830980a782020a8462eda974bc89cc245ded5ea3a42269ee01b16dee9de5292e87b47a70b008b31383a1f4b347cc392db4be17850efd
-
SSDEEP
12288:bLQnmNSuVLW3ADVzRjS1V32b3nDtVqxQIq+5uy:XQn8SuVLW3ADVzRjU27DtVqxQIq+z
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-