General
-
Target
f3daebbad06f82c733ff762809b6b404ebeaa27474454655a46d176d67d551d8N.exe
-
Size
1.4MB
-
Sample
241112-yy81hszhpk
-
MD5
5cf92501a78d0c59f9ea78c7b5d3b682
-
SHA1
7349af07ae910b68e1aece2b3e18207909a9941f
-
SHA256
fcd14099331ac777058b9ce01dd9b7ad606967f608c0ecbb98884f5ec599f8fe
-
SHA512
830ea5d39d8620163cd512f450dfb29b3cf5b01e672997ec82be8669ae1b7374d404adf2461487765c75ff8d54610ae57f35157f5509de23341212950f0ce4e1
-
SSDEEP
24576:Ra/EB4bekZB4diUmKsRGsAsGB75RC48+wK9hGcvVtlsBY1/I:wEUekZednbsRTAs4sK9hGirlsBY1w
Malware Config
Targets
-
-
Target
f3daebbad06f82c733ff762809b6b404ebeaa27474454655a46d176d67d551d8N.exe
-
Size
1.4MB
-
MD5
5cf92501a78d0c59f9ea78c7b5d3b682
-
SHA1
7349af07ae910b68e1aece2b3e18207909a9941f
-
SHA256
fcd14099331ac777058b9ce01dd9b7ad606967f608c0ecbb98884f5ec599f8fe
-
SHA512
830ea5d39d8620163cd512f450dfb29b3cf5b01e672997ec82be8669ae1b7374d404adf2461487765c75ff8d54610ae57f35157f5509de23341212950f0ce4e1
-
SSDEEP
24576:Ra/EB4bekZB4diUmKsRGsAsGB75RC48+wK9hGcvVtlsBY1/I:wEUekZednbsRTAs4sK9hGirlsBY1w
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-