General
-
Target
5baa0fadebe6aa6b9b727ca5dec3ac67fc8da607b42b7654387532c3ac85cf4cN
-
Size
153KB
-
Sample
241029-cpqa6asemg
-
MD5
ee7bfdb94d4052e8c8b777c997e56ff0
-
SHA1
7d132729ee8b50ccbc2faa754ad5a5df882669fd
-
SHA256
5baa0fadebe6aa6b9b727ca5dec3ac67fc8da607b42b7654387532c3ac85cf4c
-
SHA512
1e5b0f41ba360996926b077d3ad33d1efbf1358c365729280bd3450c54ca52f5a274a19193bd3e148d262a385e3de524231345f2c428685458d4ef28d56f8157
-
SSDEEP
3072:sr85C3TF3s/CWDsZpEzdAGhWXMWe6eTBZOGi6nwLJQ4OGj3r:k9RxTXMhOGiBL4Gjb
Malware Config
Targets
-
-
Target
5baa0fadebe6aa6b9b727ca5dec3ac67fc8da607b42b7654387532c3ac85cf4cN
-
Size
153KB
-
MD5
ee7bfdb94d4052e8c8b777c997e56ff0
-
SHA1
7d132729ee8b50ccbc2faa754ad5a5df882669fd
-
SHA256
5baa0fadebe6aa6b9b727ca5dec3ac67fc8da607b42b7654387532c3ac85cf4c
-
SHA512
1e5b0f41ba360996926b077d3ad33d1efbf1358c365729280bd3450c54ca52f5a274a19193bd3e148d262a385e3de524231345f2c428685458d4ef28d56f8157
-
SSDEEP
3072:sr85C3TF3s/CWDsZpEzdAGhWXMWe6eTBZOGi6nwLJQ4OGj3r:k9RxTXMhOGiBL4Gjb
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-