General
-
Target
dac55426704b80a1171269327c4021b6fe20c2920f4eeb3f536fc7d337ea8fd1N
-
Size
428KB
-
Sample
241029-nye3bstnhy
-
MD5
11b6b8072fd2392021b70a6ee27fafd0
-
SHA1
b06a0054f265999f06a97ac97b748a6d757e83cf
-
SHA256
dac55426704b80a1171269327c4021b6fe20c2920f4eeb3f536fc7d337ea8fd1
-
SHA512
d1d37efde7698d42e3beeb31d93f824d5632854eeb44644367b8ecb5713d6bc0032e832d222b666ad33ae5e95cd00d9e522b82844c01fdf51969776aa288ad0a
-
SSDEEP
3072:sr85C4D41la0SQv51Qsnk0UP4Kq1It2UjZuF/5QH5jpDp2pD/u5+1jL6nE8P:k9e0/v5Dw2UjZbH5j8S5Gpk
Malware Config
Targets
-
-
Target
dac55426704b80a1171269327c4021b6fe20c2920f4eeb3f536fc7d337ea8fd1N
-
Size
428KB
-
MD5
11b6b8072fd2392021b70a6ee27fafd0
-
SHA1
b06a0054f265999f06a97ac97b748a6d757e83cf
-
SHA256
dac55426704b80a1171269327c4021b6fe20c2920f4eeb3f536fc7d337ea8fd1
-
SHA512
d1d37efde7698d42e3beeb31d93f824d5632854eeb44644367b8ecb5713d6bc0032e832d222b666ad33ae5e95cd00d9e522b82844c01fdf51969776aa288ad0a
-
SSDEEP
3072:sr85C4D41la0SQv51Qsnk0UP4Kq1It2UjZuF/5QH5jpDp2pD/u5+1jL6nE8P:k9e0/v5Dw2UjZbH5j8S5Gpk
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-