General
-
Target
b074986d90643899d920d44756404d03b31cafc55a0e9b9538ba45edef66ca50
-
Size
341KB
-
Sample
241124-cszn1ayqby
-
MD5
33034df9a8e355c4d10181d9c86d150c
-
SHA1
37d9e03acc03faebee60e33f48a84144464f0484
-
SHA256
b074986d90643899d920d44756404d03b31cafc55a0e9b9538ba45edef66ca50
-
SHA512
df3ed6f479b470e7cddb293e37c8b8cb6e0806049f36edc81bbf4d160d8119a8f6eea0f17a101bc3cdbb687b00dafc1346083dd98cfce13f29b85185dfd62a90
-
SSDEEP
6144:k9MItXiNAQbevh/OgWshW+yyLEQd73L4AvP5hlN0K:GINAQbevh3WshX7b4kAK
Malware Config
Targets
-
-
Target
b074986d90643899d920d44756404d03b31cafc55a0e9b9538ba45edef66ca50
-
Size
341KB
-
MD5
33034df9a8e355c4d10181d9c86d150c
-
SHA1
37d9e03acc03faebee60e33f48a84144464f0484
-
SHA256
b074986d90643899d920d44756404d03b31cafc55a0e9b9538ba45edef66ca50
-
SHA512
df3ed6f479b470e7cddb293e37c8b8cb6e0806049f36edc81bbf4d160d8119a8f6eea0f17a101bc3cdbb687b00dafc1346083dd98cfce13f29b85185dfd62a90
-
SSDEEP
6144:k9MItXiNAQbevh/OgWshW+yyLEQd73L4AvP5hlN0K:GINAQbevh3WshX7b4kAK
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-