General
-
Target
f480f1bc0d467957b15ae9f3c0d27b558718942b90d55422b76bdd31c6fe7aaa.exe
-
Size
2.3MB
-
Sample
241124-xlmq3szmhq
-
MD5
48cd6016ea4bc5858c2651a6f74cc8b4
-
SHA1
622d5fbbac24ebe392a97cff46ebe711571e5194
-
SHA256
f480f1bc0d467957b15ae9f3c0d27b558718942b90d55422b76bdd31c6fe7aaa
-
SHA512
61144e381b7a3a60635863a165013bf7bbfbf1eeb89d70be615fd89879fd43dbcfd7f20acf73f87f870abc81f1a58895c2fd4c65571d494f1508a5cae7a37a24
-
SSDEEP
49152:pXBetXiyqGdkXDHpiEJ+jHF3Oyp0ObyYVpopwo9Ff/kzM4xoB+dKMYNlCV:wSeFMRa
Malware Config
Targets
-
-
Target
f480f1bc0d467957b15ae9f3c0d27b558718942b90d55422b76bdd31c6fe7aaa.exe
-
Size
2.3MB
-
MD5
48cd6016ea4bc5858c2651a6f74cc8b4
-
SHA1
622d5fbbac24ebe392a97cff46ebe711571e5194
-
SHA256
f480f1bc0d467957b15ae9f3c0d27b558718942b90d55422b76bdd31c6fe7aaa
-
SHA512
61144e381b7a3a60635863a165013bf7bbfbf1eeb89d70be615fd89879fd43dbcfd7f20acf73f87f870abc81f1a58895c2fd4c65571d494f1508a5cae7a37a24
-
SSDEEP
49152:pXBetXiyqGdkXDHpiEJ+jHF3Oyp0ObyYVpopwo9Ff/kzM4xoB+dKMYNlCV:wSeFMRa
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-