General
-
Target
43261c18d3dca76cbace79e4d712cbd3a7e9e9b47a5cfab586fec412fd9aa3cf
-
Size
222KB
-
Sample
241109-1jgc3asjf1
-
MD5
b02acdd2a3f2812e41f9ce7c98053889
-
SHA1
68a5fa051f0654c5040bcbc142bcbdb56af268ab
-
SHA256
43261c18d3dca76cbace79e4d712cbd3a7e9e9b47a5cfab586fec412fd9aa3cf
-
SHA512
364bffa781aec7ae5cfcf906e76780b9b109129696a5a2ebdf2f139b2900088ea3ed9eb236e895f176e507f561703708a980ef828236933a8d27a5d3ef6bda02
-
SSDEEP
3072:sr85CUGMjVbQFUN+3i0frrpSqN42l8czHR6kl3VLgiv:k9UGS5wSUFNDHwkl3VLH
Malware Config
Targets
-
-
Target
43261c18d3dca76cbace79e4d712cbd3a7e9e9b47a5cfab586fec412fd9aa3cf
-
Size
222KB
-
MD5
b02acdd2a3f2812e41f9ce7c98053889
-
SHA1
68a5fa051f0654c5040bcbc142bcbdb56af268ab
-
SHA256
43261c18d3dca76cbace79e4d712cbd3a7e9e9b47a5cfab586fec412fd9aa3cf
-
SHA512
364bffa781aec7ae5cfcf906e76780b9b109129696a5a2ebdf2f139b2900088ea3ed9eb236e895f176e507f561703708a980ef828236933a8d27a5d3ef6bda02
-
SSDEEP
3072:sr85CUGMjVbQFUN+3i0frrpSqN42l8czHR6kl3VLgiv:k9UGS5wSUFNDHwkl3VLH
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-