General
-
Target
b4c236a9c1b689d581dff93bf09f033ae3f232631a0f66b361fc9f4e621d9b66
-
Size
3.1MB
-
Sample
241125-djsprs1kfl
-
MD5
6a9617db3cf482788d7b5bc8b1096051
-
SHA1
dc8677f30538ad417d76df55a6ec46db940fa84b
-
SHA256
b4c236a9c1b689d581dff93bf09f033ae3f232631a0f66b361fc9f4e621d9b66
-
SHA512
5d9f68318b78786c5cabc3e159ade11749cb4e9b6f8af81cb69c13a6431f07ef149f8e7c17e881fb59417aaa59986016cdd52f8236fbe1fcad994d45dd0c71e3
-
SSDEEP
98304:/MHcPfjSlwSeNKuxDFL0hQNFqyQGaMrmhwJttwjEX2BsqEHuy2t0rJx48x64D:/MHcPmlwSeNKuxDFL0hQNFqyQGaMrmh+
Malware Config
Targets
-
-
Target
b4c236a9c1b689d581dff93bf09f033ae3f232631a0f66b361fc9f4e621d9b66
-
Size
3.1MB
-
MD5
6a9617db3cf482788d7b5bc8b1096051
-
SHA1
dc8677f30538ad417d76df55a6ec46db940fa84b
-
SHA256
b4c236a9c1b689d581dff93bf09f033ae3f232631a0f66b361fc9f4e621d9b66
-
SHA512
5d9f68318b78786c5cabc3e159ade11749cb4e9b6f8af81cb69c13a6431f07ef149f8e7c17e881fb59417aaa59986016cdd52f8236fbe1fcad994d45dd0c71e3
-
SSDEEP
98304:/MHcPfjSlwSeNKuxDFL0hQNFqyQGaMrmhwJttwjEX2BsqEHuy2t0rJx48x64D:/MHcPmlwSeNKuxDFL0hQNFqyQGaMrmh+
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-