General
-
Target
0c6bd7356e7fe190943fa8232d31cc143e9c83cb8cec430f12bc20742b720da3.exe
-
Size
994KB
-
Sample
241125-bsat7szrgw
-
MD5
8f48dd967713ad9a7b211e7345132454
-
SHA1
c3b0032a1437b2a04a16f09bcdd7592a9dd6c281
-
SHA256
0c6bd7356e7fe190943fa8232d31cc143e9c83cb8cec430f12bc20742b720da3
-
SHA512
8ee490adf440587aa6bde6b88d99dcee979acf6f2c61bb65807f67af3e6d5d8e9dbf240aea1a4bce0e92a715a7df2b98f10635f46da4541588571d86aafc205c
-
SSDEEP
24576:6bZAallWmmB2E672gWj6THPZGBQxM/gsFKD:MAOlWV6ImPZG22KD
Malware Config
Targets
-
-
Target
0c6bd7356e7fe190943fa8232d31cc143e9c83cb8cec430f12bc20742b720da3.exe
-
Size
994KB
-
MD5
8f48dd967713ad9a7b211e7345132454
-
SHA1
c3b0032a1437b2a04a16f09bcdd7592a9dd6c281
-
SHA256
0c6bd7356e7fe190943fa8232d31cc143e9c83cb8cec430f12bc20742b720da3
-
SHA512
8ee490adf440587aa6bde6b88d99dcee979acf6f2c61bb65807f67af3e6d5d8e9dbf240aea1a4bce0e92a715a7df2b98f10635f46da4541588571d86aafc205c
-
SSDEEP
24576:6bZAallWmmB2E672gWj6THPZGBQxM/gsFKD:MAOlWV6ImPZG22KD
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-