General
-
Target
bb9ba88a4dc535c00ca10299344444d353e6155fb4dfccc09ddfbdd17e9d2899.exe
-
Size
1.5MB
-
Sample
241113-lydhdssqeq
-
MD5
5e8e5a5fcfb9878e1590ef01aa03eeff
-
SHA1
efa1491b027795f4a77e9492826222270d9be7a8
-
SHA256
bb9ba88a4dc535c00ca10299344444d353e6155fb4dfccc09ddfbdd17e9d2899
-
SHA512
0e6bf041c776f36767db13a1a4246f8aa06e2784f21d74ce6b54c85226efd500e3bbc35c6a518b9d775be4aba03b843c8217ca525624d2875608b25c7f474fe1
-
SSDEEP
24576:sVqyG3T/+ofiDIZE2kChYYmpY9a2nWEdEC6GnJJ3G0vx9CzQ:sQdhZgEN6GnJ9v
Malware Config
Targets
-
-
Target
bb9ba88a4dc535c00ca10299344444d353e6155fb4dfccc09ddfbdd17e9d2899.exe
-
Size
1.5MB
-
MD5
5e8e5a5fcfb9878e1590ef01aa03eeff
-
SHA1
efa1491b027795f4a77e9492826222270d9be7a8
-
SHA256
bb9ba88a4dc535c00ca10299344444d353e6155fb4dfccc09ddfbdd17e9d2899
-
SHA512
0e6bf041c776f36767db13a1a4246f8aa06e2784f21d74ce6b54c85226efd500e3bbc35c6a518b9d775be4aba03b843c8217ca525624d2875608b25c7f474fe1
-
SSDEEP
24576:sVqyG3T/+ofiDIZE2kChYYmpY9a2nWEdEC6GnJJ3G0vx9CzQ:sQdhZgEN6GnJ9v
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-