General
-
Target
b1f830036add9b0d915cd54f916cd444c6816f69bbf202db14da646fa72a5b82N
-
Size
1.4MB
-
Sample
241027-c17pkssdrc
-
MD5
0d32e3c66af8ca083cf5d1b0200ff770
-
SHA1
d26bc56a0921c88b6bd6eac34899473172b79f3a
-
SHA256
b1f830036add9b0d915cd54f916cd444c6816f69bbf202db14da646fa72a5b82
-
SHA512
bc453bfdb9e521109f80b602c50adb8791be71a9496cff28b81453fd1ceb5c0fa1af6a937899a161ed953a87f8c195f362988fbef5acf2968f588b5562f6722f
-
SSDEEP
24576:8v2XwKvHoBHErvOmnD4TxJeUrtONbcDvX+ZRDSq9yG0+GYCwdD5sguoaDEy4lFYv:PvyiUTxwuoNbxzyG0QCKD5daDEyUk
Malware Config
Targets
-
-
Target
b1f830036add9b0d915cd54f916cd444c6816f69bbf202db14da646fa72a5b82N
-
Size
1.4MB
-
MD5
0d32e3c66af8ca083cf5d1b0200ff770
-
SHA1
d26bc56a0921c88b6bd6eac34899473172b79f3a
-
SHA256
b1f830036add9b0d915cd54f916cd444c6816f69bbf202db14da646fa72a5b82
-
SHA512
bc453bfdb9e521109f80b602c50adb8791be71a9496cff28b81453fd1ceb5c0fa1af6a937899a161ed953a87f8c195f362988fbef5acf2968f588b5562f6722f
-
SSDEEP
24576:8v2XwKvHoBHErvOmnD4TxJeUrtONbcDvX+ZRDSq9yG0+GYCwdD5sguoaDEy4lFYv:PvyiUTxwuoNbxzyG0QCKD5daDEyUk
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-