General
-
Target
d7b51ade94570af846beb9fff79524153e2efe0adc3b7f1fe24d0a0149560bd0N
-
Size
561KB
-
Sample
241106-spbqrsseqh
-
MD5
6409a37baec16d51e2c601708fbd66f0
-
SHA1
12c3a691ce9f841881c02e77b5b5d57e956ada04
-
SHA256
d7b51ade94570af846beb9fff79524153e2efe0adc3b7f1fe24d0a0149560bd0
-
SHA512
7e7063d6c7a3fa1dafecfb4f05a1beba4c5a6231a70522b59e7afe559415bf173c3627a727c434d69372140f918cd651bfacf83d4958a36602642feb208c80a2
-
SSDEEP
3072:sr85CIE5zrTTp8mlaySQe5gAX8vrMIsCwF5e5RH5jqaZ4FhKnTEFQapWpKvIu5ey:k9hrTTWy/e5AwnCo0H5jFi5UxGg+9
Malware Config
Targets
-
-
Target
d7b51ade94570af846beb9fff79524153e2efe0adc3b7f1fe24d0a0149560bd0N
-
Size
561KB
-
MD5
6409a37baec16d51e2c601708fbd66f0
-
SHA1
12c3a691ce9f841881c02e77b5b5d57e956ada04
-
SHA256
d7b51ade94570af846beb9fff79524153e2efe0adc3b7f1fe24d0a0149560bd0
-
SHA512
7e7063d6c7a3fa1dafecfb4f05a1beba4c5a6231a70522b59e7afe559415bf173c3627a727c434d69372140f918cd651bfacf83d4958a36602642feb208c80a2
-
SSDEEP
3072:sr85CIE5zrTTp8mlaySQe5gAX8vrMIsCwF5e5RH5jqaZ4FhKnTEFQapWpKvIu5ey:k9hrTTWy/e5AwnCo0H5jFi5UxGg+9
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-