General
-
Target
d141c9a4d2a10a7690081cebd531db1e2368aa73042cf810a4ff54d249a597e0.exe
-
Size
1.4MB
-
Sample
241123-sbg1matjgm
-
MD5
b2bdbb22ddca306eb0bbd3d1613a858d
-
SHA1
ba45ee08b5e8f76f1dcf808f36e591ab7b4c1932
-
SHA256
d141c9a4d2a10a7690081cebd531db1e2368aa73042cf810a4ff54d249a597e0
-
SHA512
d732fd423cfc49167a4531b63d97a0d7109a54e8ecd6ed7945ff748ccfffdae6f4debe558031fb6240e3c00f1e30c5cb03b0f4ede766896b78f7171cb896844b
-
SSDEEP
24576:Wpc1uK2sJL57CO38h9YnO6qQM6K0GqoVa1D8:X9JLJzgYRlK05oVN
Malware Config
Targets
-
-
Target
d141c9a4d2a10a7690081cebd531db1e2368aa73042cf810a4ff54d249a597e0.exe
-
Size
1.4MB
-
MD5
b2bdbb22ddca306eb0bbd3d1613a858d
-
SHA1
ba45ee08b5e8f76f1dcf808f36e591ab7b4c1932
-
SHA256
d141c9a4d2a10a7690081cebd531db1e2368aa73042cf810a4ff54d249a597e0
-
SHA512
d732fd423cfc49167a4531b63d97a0d7109a54e8ecd6ed7945ff748ccfffdae6f4debe558031fb6240e3c00f1e30c5cb03b0f4ede766896b78f7171cb896844b
-
SSDEEP
24576:Wpc1uK2sJL57CO38h9YnO6qQM6K0GqoVa1D8:X9JLJzgYRlK05oVN
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-