General
-
Target
bd0a4c4f80efabeb4df4854b6b6011c20f97b9b911267c8a9627d10e03983fa0.exe
-
Size
258KB
-
Sample
241112-l3hynstkck
-
MD5
fc40a95e963697dec16b1d49ee9d0f26
-
SHA1
7895166c342210c8e2074e147f35e9b5ce52f653
-
SHA256
bd0a4c4f80efabeb4df4854b6b6011c20f97b9b911267c8a9627d10e03983fa0
-
SHA512
83805e33bb752e984e94637982a03e910fba4e86c9ad2f3ddf8253eeb6b0380a6b5e5009991955120b65b6de71bc4e1146bd91ef8a229a387fc2617a225d7fbc
-
SSDEEP
3072:sr85CsgeDfO3lXF8MeIxoBy7mboUMJlb7xauUdYSFvRvYyM3cps2f7pxmL9biOOC:k9Q0iTICOe3MJl5UdYUvYL+I9btOUFR
Malware Config
Targets
-
-
Target
bd0a4c4f80efabeb4df4854b6b6011c20f97b9b911267c8a9627d10e03983fa0.exe
-
Size
258KB
-
MD5
fc40a95e963697dec16b1d49ee9d0f26
-
SHA1
7895166c342210c8e2074e147f35e9b5ce52f653
-
SHA256
bd0a4c4f80efabeb4df4854b6b6011c20f97b9b911267c8a9627d10e03983fa0
-
SHA512
83805e33bb752e984e94637982a03e910fba4e86c9ad2f3ddf8253eeb6b0380a6b5e5009991955120b65b6de71bc4e1146bd91ef8a229a387fc2617a225d7fbc
-
SSDEEP
3072:sr85CsgeDfO3lXF8MeIxoBy7mboUMJlb7xauUdYSFvRvYyM3cps2f7pxmL9biOOC:k9Q0iTICOe3MJl5UdYUvYL+I9btOUFR
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-