General
-
Target
d36c50e61507189b8655631bac3cc419e8d42f1dc472d24eb026a763630de1fb.exe
-
Size
648KB
-
Sample
241124-vef9lsvrbm
-
MD5
212d9250363812f0b3cdb6940f19a302
-
SHA1
50f5c4cc376d86531e4a4d0a52f93565db19c87c
-
SHA256
d36c50e61507189b8655631bac3cc419e8d42f1dc472d24eb026a763630de1fb
-
SHA512
2e47e3413bdb6ef8248beaae51c0586395cc15c41037892bb4a984f31288033a5d4e483f45a7b0dab1fe29b09bdab3d12a27f7dc12ed780e84b8bc93cf0e97ba
-
SSDEEP
12288:DEsd9PZfePv3xl7ft7V+6uC+zd5qLlE03wBf5qUKODnmbCtp:D39PZfePv3r7fm6t+jqpb3A5qfOA4p
Malware Config
Targets
-
-
Target
d36c50e61507189b8655631bac3cc419e8d42f1dc472d24eb026a763630de1fb.exe
-
Size
648KB
-
MD5
212d9250363812f0b3cdb6940f19a302
-
SHA1
50f5c4cc376d86531e4a4d0a52f93565db19c87c
-
SHA256
d36c50e61507189b8655631bac3cc419e8d42f1dc472d24eb026a763630de1fb
-
SHA512
2e47e3413bdb6ef8248beaae51c0586395cc15c41037892bb4a984f31288033a5d4e483f45a7b0dab1fe29b09bdab3d12a27f7dc12ed780e84b8bc93cf0e97ba
-
SSDEEP
12288:DEsd9PZfePv3xl7ft7V+6uC+zd5qLlE03wBf5qUKODnmbCtp:D39PZfePv3r7fm6t+jqpb3A5qfOA4p
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-