General
-
Target
35cfb2552fca61ed5a65e0fdd1da16c20ded4ca0d5bd46dfca7f223f7fd025f0.exe
-
Size
6.1MB
-
Sample
241123-vxavjsylgs
-
MD5
e3c4a6691a6dc54d0fd92db09594a76b
-
SHA1
f837ee0d15c403062863be4d48561f4de3b4b720
-
SHA256
35cfb2552fca61ed5a65e0fdd1da16c20ded4ca0d5bd46dfca7f223f7fd025f0
-
SHA512
a9fc1068328c95b3854bb025e7a16abf6452cafe2433ada41036724dd935a21dcb5656e1a8cab3116c5536188800e61701f77035854dd71ba61e400eda61abc6
-
SSDEEP
98304:giKscnNZkbxF2JPKavhVt4GviWHAT4iKscnNZkbxF2qglbTf8pS:j6LOIK+1iWHI76LOaZL8pS
Malware Config
Targets
-
-
Target
35cfb2552fca61ed5a65e0fdd1da16c20ded4ca0d5bd46dfca7f223f7fd025f0.exe
-
Size
6.1MB
-
MD5
e3c4a6691a6dc54d0fd92db09594a76b
-
SHA1
f837ee0d15c403062863be4d48561f4de3b4b720
-
SHA256
35cfb2552fca61ed5a65e0fdd1da16c20ded4ca0d5bd46dfca7f223f7fd025f0
-
SHA512
a9fc1068328c95b3854bb025e7a16abf6452cafe2433ada41036724dd935a21dcb5656e1a8cab3116c5536188800e61701f77035854dd71ba61e400eda61abc6
-
SSDEEP
98304:giKscnNZkbxF2JPKavhVt4GviWHAT4iKscnNZkbxF2qglbTf8pS:j6LOIK+1iWHI76LOaZL8pS
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-