General
-
Target
eb3d23747ba8fa247d1996e5a689c3d14afe4add1f3f33c6529837820c48732e
-
Size
577KB
-
Sample
221129-jx6fnsah52
-
MD5
0e7856e508d7b6388d60db938b0b8810
-
SHA1
564767d26cc7b2ea64d9e341e92630272fadb23b
-
SHA256
eb3d23747ba8fa247d1996e5a689c3d14afe4add1f3f33c6529837820c48732e
-
SHA512
c1be46539531dafe4a4d59520f6a441c196fd44ccd1c009a02caa9f43eab5990d11b9930a8bccc7321a422f823f8670ae51cd377ec84bdb1f5c7a2a37b30a41d
-
SSDEEP
6144:k9hNZlxEdL5RvGlcHF37newMLao6nMnKHOD13XRnCfOVSePfLtisgZYlm49:3dz+lcDKao6nSKHsRqOMgxZgJ49
Malware Config
Targets
-
-
Target
eb3d23747ba8fa247d1996e5a689c3d14afe4add1f3f33c6529837820c48732e
-
Size
577KB
-
MD5
0e7856e508d7b6388d60db938b0b8810
-
SHA1
564767d26cc7b2ea64d9e341e92630272fadb23b
-
SHA256
eb3d23747ba8fa247d1996e5a689c3d14afe4add1f3f33c6529837820c48732e
-
SHA512
c1be46539531dafe4a4d59520f6a441c196fd44ccd1c009a02caa9f43eab5990d11b9930a8bccc7321a422f823f8670ae51cd377ec84bdb1f5c7a2a37b30a41d
-
SSDEEP
6144:k9hNZlxEdL5RvGlcHF37newMLao6nMnKHOD13XRnCfOVSePfLtisgZYlm49:3dz+lcDKao6nSKHsRqOMgxZgJ49
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-