General
-
Target
36e228fa030534a282bb339a538b76d578cd8ac18a2ec90271ac391e6593c02c
-
Size
333KB
-
Sample
241103-1grq1swaqk
-
MD5
c182ece96d6d9a64a0c0464b22f35371
-
SHA1
4af9dcd8ba229f967a7573a0ca73aa24c5690a98
-
SHA256
36e228fa030534a282bb339a538b76d578cd8ac18a2ec90271ac391e6593c02c
-
SHA512
3aebf790625f3cc19f6e56e48b575199f8ff20caaf9480cbf864a9ed22e7178f0378d5254e65893246e177083120796de453ffb3c258446a0c590e28d04b636f
-
SSDEEP
3072:sr85Cn4BN6e7qQ0x6Nvx1p5GnKIL72zgO5+r85C:k9n66e7qR2x1p5GnKIL7P9
Malware Config
Targets
-
-
Target
36e228fa030534a282bb339a538b76d578cd8ac18a2ec90271ac391e6593c02c
-
Size
333KB
-
MD5
c182ece96d6d9a64a0c0464b22f35371
-
SHA1
4af9dcd8ba229f967a7573a0ca73aa24c5690a98
-
SHA256
36e228fa030534a282bb339a538b76d578cd8ac18a2ec90271ac391e6593c02c
-
SHA512
3aebf790625f3cc19f6e56e48b575199f8ff20caaf9480cbf864a9ed22e7178f0378d5254e65893246e177083120796de453ffb3c258446a0c590e28d04b636f
-
SSDEEP
3072:sr85Cn4BN6e7qQ0x6Nvx1p5GnKIL72zgO5+r85C:k9n66e7qR2x1p5GnKIL7P9
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-