General
-
Target
8e2430f18b6d96bbe9bbdc8153888a525a1abae8f4370afb17b06be65ae2dec3N.exe
-
Size
437KB
-
Sample
241124-sry9vasjcq
-
MD5
8a66e7d744e4b6cddbe2e46fa38a3220
-
SHA1
a4801c566cccf6834c6aefa282b272d43dbaaa87
-
SHA256
8e2430f18b6d96bbe9bbdc8153888a525a1abae8f4370afb17b06be65ae2dec3
-
SHA512
c6995e567a585571ce68ca85680c563f556dd6d49d9d12444a65e7095f3e1249a9e9fbe5ca0633ca6905b26395ed99ee08b7b6759b6ca73b4aba92e8d5b8e0bc
-
SSDEEP
6144:m9x88kp0nzMrq/5+bCrmiTVVmVVV8VVNVVVcVVVxVVVPVVlVVVRVVVtVVWV60jVd:NZp0nzMrjGxAsGC4fRnG
Malware Config
Targets
-
-
Target
8e2430f18b6d96bbe9bbdc8153888a525a1abae8f4370afb17b06be65ae2dec3N.exe
-
Size
437KB
-
MD5
8a66e7d744e4b6cddbe2e46fa38a3220
-
SHA1
a4801c566cccf6834c6aefa282b272d43dbaaa87
-
SHA256
8e2430f18b6d96bbe9bbdc8153888a525a1abae8f4370afb17b06be65ae2dec3
-
SHA512
c6995e567a585571ce68ca85680c563f556dd6d49d9d12444a65e7095f3e1249a9e9fbe5ca0633ca6905b26395ed99ee08b7b6759b6ca73b4aba92e8d5b8e0bc
-
SSDEEP
6144:m9x88kp0nzMrq/5+bCrmiTVVmVVV8VVNVVVcVVVxVVVPVVlVVVRVVVtVVWV60jVd:NZp0nzMrjGxAsGC4fRnG
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-