General
-
Target
e19226ac43f678f86f59ec959afc167e06deaeb1e0d0a6433b24a22f4691c991
-
Size
995KB
-
Sample
221126-de7ccsbc6s
-
MD5
85659ac2b843033ced8c7a13a0420fb4
-
SHA1
e29446ef2ec4e99b2c924500e2f223ef0d3b4963
-
SHA256
e19226ac43f678f86f59ec959afc167e06deaeb1e0d0a6433b24a22f4691c991
-
SHA512
d85d075b7a9b4aac86811203da77efd0f61fadf2eedf6bb23f42bc59c085206b608299849a83f36737e22d2396f4c8d1afe673421dfb92ba94fe75caa12db47d
-
SSDEEP
12288:XaoaKVf076y9a3w2GLDiCO7TzywypUSxsCwCdBQqRmJZkOM87DtFbNXQOHP9QCnv:Vf0QwJ4oj5XVe5M2DtFZrnF1
Malware Config
Targets
-
-
Target
e19226ac43f678f86f59ec959afc167e06deaeb1e0d0a6433b24a22f4691c991
-
Size
995KB
-
MD5
85659ac2b843033ced8c7a13a0420fb4
-
SHA1
e29446ef2ec4e99b2c924500e2f223ef0d3b4963
-
SHA256
e19226ac43f678f86f59ec959afc167e06deaeb1e0d0a6433b24a22f4691c991
-
SHA512
d85d075b7a9b4aac86811203da77efd0f61fadf2eedf6bb23f42bc59c085206b608299849a83f36737e22d2396f4c8d1afe673421dfb92ba94fe75caa12db47d
-
SSDEEP
12288:XaoaKVf076y9a3w2GLDiCO7TzywypUSxsCwCdBQqRmJZkOM87DtFbNXQOHP9QCnv:Vf0QwJ4oj5XVe5M2DtFZrnF1
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-