General
-
Target
3493925f772e1b60bdb0c79c5f32768e60f6569798e622ae485ffece5e79a049
-
Size
881KB
-
Sample
240420-zlbpxshf28
-
MD5
84866a33569906143a2c5957bec816a0
-
SHA1
e5852d7ec0da73eacf42bab00924aa434cef6113
-
SHA256
3493925f772e1b60bdb0c79c5f32768e60f6569798e622ae485ffece5e79a049
-
SHA512
dfd212c3f81ea966669dc741623a37d75e9c85e875eb1a717c45ce7334022dbe98a74a43ab4362b64312975a8e898fdc28620d3dc2cf26309a18fff9a07faac8
-
SSDEEP
24576:h/OfDlEUKWflmTP3sGIP0nUHbmdNl2aJ82JA:EfU4UjsZbiCaJ8T
Malware Config
Targets
-
-
Target
3493925f772e1b60bdb0c79c5f32768e60f6569798e622ae485ffece5e79a049
-
Size
881KB
-
MD5
84866a33569906143a2c5957bec816a0
-
SHA1
e5852d7ec0da73eacf42bab00924aa434cef6113
-
SHA256
3493925f772e1b60bdb0c79c5f32768e60f6569798e622ae485ffece5e79a049
-
SHA512
dfd212c3f81ea966669dc741623a37d75e9c85e875eb1a717c45ce7334022dbe98a74a43ab4362b64312975a8e898fdc28620d3dc2cf26309a18fff9a07faac8
-
SSDEEP
24576:h/OfDlEUKWflmTP3sGIP0nUHbmdNl2aJ82JA:EfU4UjsZbiCaJ8T
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-