General
-
Target
a30b254ecece2ce35f4345286bed7be13308c55bfd61f2388b2908b9084b55a7
-
Size
518KB
-
Sample
221130-avkxhsff2y
-
MD5
5b7052602129eb648cd5b4c5fcc15634
-
SHA1
84b97d1d095bbab5a8577702187a1721edacef40
-
SHA256
a30b254ecece2ce35f4345286bed7be13308c55bfd61f2388b2908b9084b55a7
-
SHA512
fe9237aaa0d4d878fec33de4b995bf8b503f450cea88e21fd1f7891bd0b88c6608da5e22aab3f33309f16763fe5305253469345b4215d79195c711436902972c
-
SSDEEP
12288:737bkEe7fkghNdEVfIaKhgVI4gDmoZWKKBzJ:7kEe5uIaUgVI4ghZWKKBzJ
Malware Config
Targets
-
-
Target
a30b254ecece2ce35f4345286bed7be13308c55bfd61f2388b2908b9084b55a7
-
Size
518KB
-
MD5
5b7052602129eb648cd5b4c5fcc15634
-
SHA1
84b97d1d095bbab5a8577702187a1721edacef40
-
SHA256
a30b254ecece2ce35f4345286bed7be13308c55bfd61f2388b2908b9084b55a7
-
SHA512
fe9237aaa0d4d878fec33de4b995bf8b503f450cea88e21fd1f7891bd0b88c6608da5e22aab3f33309f16763fe5305253469345b4215d79195c711436902972c
-
SSDEEP
12288:737bkEe7fkghNdEVfIaKhgVI4gDmoZWKKBzJ:7kEe5uIaUgVI4ghZWKKBzJ
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-