General
-
Target
141e780d77fc5592c04a370ffc683456ee01b428f5e0b6a92a25eb35e637e220
-
Size
1.5MB
-
Sample
241123-ykbsvszkdl
-
MD5
84736641134c39c02b439a34a2660596
-
SHA1
75654403b157d2de242a623f7d63e7acff2ff961
-
SHA256
141e780d77fc5592c04a370ffc683456ee01b428f5e0b6a92a25eb35e637e220
-
SHA512
3223ca905ae12bd2be29bb341e7086d6967e025cf14e9622bd99edff5247db98321f3188891418064cf972f9d7beab41c555690c6a5df4fe58eb33793e8f1643
-
SSDEEP
24576:bAeA1+ibmbYjLNVcP6f2B2MJkgbg6DwMU9JCMIl3R:cRUbYDg6q2QZbgWUHCFR
Malware Config
Targets
-
-
Target
141e780d77fc5592c04a370ffc683456ee01b428f5e0b6a92a25eb35e637e220
-
Size
1.5MB
-
MD5
84736641134c39c02b439a34a2660596
-
SHA1
75654403b157d2de242a623f7d63e7acff2ff961
-
SHA256
141e780d77fc5592c04a370ffc683456ee01b428f5e0b6a92a25eb35e637e220
-
SHA512
3223ca905ae12bd2be29bb341e7086d6967e025cf14e9622bd99edff5247db98321f3188891418064cf972f9d7beab41c555690c6a5df4fe58eb33793e8f1643
-
SSDEEP
24576:bAeA1+ibmbYjLNVcP6f2B2MJkgbg6DwMU9JCMIl3R:cRUbYDg6q2QZbgWUHCFR
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-