General
-
Target
6d0f31de5c67451e98832bd68780321a9d2cad9a9c71ad209c2a0a53e3c931fa.exe
-
Size
305KB
-
Sample
241124-3x8etasndr
-
MD5
a562bcfe867e64ac6c7ded1e230d8ec1
-
SHA1
e2789cbd65c646d1c577497b317766788f0c92ac
-
SHA256
6d0f31de5c67451e98832bd68780321a9d2cad9a9c71ad209c2a0a53e3c931fa
-
SHA512
414dd51b250b80e3549713393275025bf5ab47d13492bce6f26136b3343c4d584ca34d4584b4d93221cfa899422dee790f7748875a4db837732ee08f8bcd2b2b
-
SSDEEP
6144:k9CfP5ZXP2mKnIV8+7zHvS+T5w68K5Zmvlw:w0DaS5QAmdw
Malware Config
Targets
-
-
Target
6d0f31de5c67451e98832bd68780321a9d2cad9a9c71ad209c2a0a53e3c931fa.exe
-
Size
305KB
-
MD5
a562bcfe867e64ac6c7ded1e230d8ec1
-
SHA1
e2789cbd65c646d1c577497b317766788f0c92ac
-
SHA256
6d0f31de5c67451e98832bd68780321a9d2cad9a9c71ad209c2a0a53e3c931fa
-
SHA512
414dd51b250b80e3549713393275025bf5ab47d13492bce6f26136b3343c4d584ca34d4584b4d93221cfa899422dee790f7748875a4db837732ee08f8bcd2b2b
-
SSDEEP
6144:k9CfP5ZXP2mKnIV8+7zHvS+T5w68K5Zmvlw:w0DaS5QAmdw
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-