General
-
Target
cd07c543b1f3638ca4ce9fd727bb851f30b942f9444beaea9cd1fccb6e7f67a0N.exe
-
Size
369KB
-
Sample
241111-fznf4axkfq
-
MD5
20ebd38c8d6797585933f924f577bf41
-
SHA1
d4d8b1e4f6a35d4bb8bc587df5c4acf66cd51426
-
SHA256
48329be6ed9ae0b2cf15b587c5340e16798831093adba689ba6c26b5e37e7e5e
-
SHA512
e6989c6d6ef7913131bc6a54cfd73bf1d21b7bec6151fd713aa0f64744ff95aa0bbf0e10c3499b62fe246c67d9bec33798ff64e4d9a105d41a05c34cbb740096
-
SSDEEP
6144:k9rM+2Ht4RWTvov/p/s7Oj+yg8ohURYozInzct/pe+Us1ApnafXyB:r+ItsWjU/xhJo0YozInzctoZJpnQM
Malware Config
Targets
-
-
Target
cd07c543b1f3638ca4ce9fd727bb851f30b942f9444beaea9cd1fccb6e7f67a0N.exe
-
Size
369KB
-
MD5
20ebd38c8d6797585933f924f577bf41
-
SHA1
d4d8b1e4f6a35d4bb8bc587df5c4acf66cd51426
-
SHA256
48329be6ed9ae0b2cf15b587c5340e16798831093adba689ba6c26b5e37e7e5e
-
SHA512
e6989c6d6ef7913131bc6a54cfd73bf1d21b7bec6151fd713aa0f64744ff95aa0bbf0e10c3499b62fe246c67d9bec33798ff64e4d9a105d41a05c34cbb740096
-
SSDEEP
6144:k9rM+2Ht4RWTvov/p/s7Oj+yg8ohURYozInzct/pe+Us1ApnafXyB:r+ItsWjU/xhJo0YozInzctoZJpnQM
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-