General
-
Target
a83c95656ce26fef18c2de7d5d5efcf05c4fa06c2a35f6369e5e1d6db27d1b22.exe
-
Size
99KB
-
Sample
241116-tg24esykcv
-
MD5
31e881316c5442b17cbe98e4183495fd
-
SHA1
962ebea879462e5920acbe1927c2e676be86c16d
-
SHA256
a83c95656ce26fef18c2de7d5d5efcf05c4fa06c2a35f6369e5e1d6db27d1b22
-
SHA512
a6b8d98f1bcbf4f89c6acd49bbb3e70ad98d900a3983d04b1217e531b7c7f842f96b317f770ddc918e4a6897f0b64165153071009f449e0bc6f0ef05cc3f8558
-
SSDEEP
1536:JxqjQ+P04wsmJCcX7NGa79xW0IsRNVPnnJ8I8S88S888E5OLUGW:sr85C47NGa79YsHVS5OLUGW
Malware Config
Targets
-
-
Target
a83c95656ce26fef18c2de7d5d5efcf05c4fa06c2a35f6369e5e1d6db27d1b22.exe
-
Size
99KB
-
MD5
31e881316c5442b17cbe98e4183495fd
-
SHA1
962ebea879462e5920acbe1927c2e676be86c16d
-
SHA256
a83c95656ce26fef18c2de7d5d5efcf05c4fa06c2a35f6369e5e1d6db27d1b22
-
SHA512
a6b8d98f1bcbf4f89c6acd49bbb3e70ad98d900a3983d04b1217e531b7c7f842f96b317f770ddc918e4a6897f0b64165153071009f449e0bc6f0ef05cc3f8558
-
SSDEEP
1536:JxqjQ+P04wsmJCcX7NGa79xW0IsRNVPnnJ8I8S88S888E5OLUGW:sr85C47NGa79YsHVS5OLUGW
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-