General
-
Target
cf97fda03cd0838cbf960b06aa2ae01143314d7e0fadd512ea640d17301583ed
-
Size
5.9MB
-
Sample
240421-dmgfxahd52
-
MD5
27ec9720a150d5ecc6abb5611165f8f7
-
SHA1
17d0dbfe64c6155f269a1a9f5c8a76ac9c226f48
-
SHA256
cf97fda03cd0838cbf960b06aa2ae01143314d7e0fadd512ea640d17301583ed
-
SHA512
5c282b0bdf851ea33d057931029fe079018fb9643d50344b9d42fcb7aed88ab4d3875332ff1d3b6ca9c251b220900de257e588b46a1afac79874a97a0e453891
-
SSDEEP
98304:pdTpYzfK2OBLXpLw3/UU7uBTTZbRDEEnzR08+x:VLw38TVNvzhe
Malware Config
Targets
-
-
Target
cf97fda03cd0838cbf960b06aa2ae01143314d7e0fadd512ea640d17301583ed
-
Size
5.9MB
-
MD5
27ec9720a150d5ecc6abb5611165f8f7
-
SHA1
17d0dbfe64c6155f269a1a9f5c8a76ac9c226f48
-
SHA256
cf97fda03cd0838cbf960b06aa2ae01143314d7e0fadd512ea640d17301583ed
-
SHA512
5c282b0bdf851ea33d057931029fe079018fb9643d50344b9d42fcb7aed88ab4d3875332ff1d3b6ca9c251b220900de257e588b46a1afac79874a97a0e453891
-
SSDEEP
98304:pdTpYzfK2OBLXpLw3/UU7uBTTZbRDEEnzR08+x:VLw38TVNvzhe
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-