General
-
Target
961a89a8fc639ec21b6dc7fe40fc9df0c52e1df236a969d8bb9176b6ef597fb5.exe
-
Size
489KB
-
Sample
241125-clt5yaykaq
-
MD5
e9c439ffca5fecb825c8dbe526087462
-
SHA1
864204e02a190f70405776993b843c6861aabf77
-
SHA256
961a89a8fc639ec21b6dc7fe40fc9df0c52e1df236a969d8bb9176b6ef597fb5
-
SHA512
b02ec114500dc0d733eba19672922f07817d97621266830241ef1ec92a687e342e964b9cd117ea83c5d02886207a1e728ece3099432641c81079e579fa0169b3
-
SSDEEP
6144:k9dre64sO+uM2oO8/n0Nn+aKR2gptO9bfz9IStpM6m16zkCkg3m:Me64h+lznATCCzHtpI1KkCDm
Malware Config
Targets
-
-
Target
961a89a8fc639ec21b6dc7fe40fc9df0c52e1df236a969d8bb9176b6ef597fb5.exe
-
Size
489KB
-
MD5
e9c439ffca5fecb825c8dbe526087462
-
SHA1
864204e02a190f70405776993b843c6861aabf77
-
SHA256
961a89a8fc639ec21b6dc7fe40fc9df0c52e1df236a969d8bb9176b6ef597fb5
-
SHA512
b02ec114500dc0d733eba19672922f07817d97621266830241ef1ec92a687e342e964b9cd117ea83c5d02886207a1e728ece3099432641c81079e579fa0169b3
-
SSDEEP
6144:k9dre64sO+uM2oO8/n0Nn+aKR2gptO9bfz9IStpM6m16zkCkg3m:Me64h+lznATCCzHtpI1KkCDm
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-