General
-
Target
f4a9055f6eb03dfe4fc0420ccf8e6218dce26069c29fce0fbe63c1ad15e83e1c
-
Size
1.4MB
-
Sample
241125-ga9tga1nes
-
MD5
da0dabd3074a2f56d1239bf8c1cb5ecc
-
SHA1
6a872ac401adc8a44326a0ef14cd215ac9eceacc
-
SHA256
f4a9055f6eb03dfe4fc0420ccf8e6218dce26069c29fce0fbe63c1ad15e83e1c
-
SHA512
aa158a2196849c7a66b309c81022f2222576c00bea9716357be788d83a0ca1e815dc2c9636a2e0d830e007f14979ed4df6e94e2e5ef67f3229d07e652db3106a
-
SSDEEP
24576:epaiGhP1x+96UBz1V/7hw5CILSbvCDpmdLq9zyMfNyAGW6xRZzXeyNbgQF:BiI1k9/HYCtMpK2zyM45fzuYbgQF
Malware Config
Targets
-
-
Target
f4a9055f6eb03dfe4fc0420ccf8e6218dce26069c29fce0fbe63c1ad15e83e1c
-
Size
1.4MB
-
MD5
da0dabd3074a2f56d1239bf8c1cb5ecc
-
SHA1
6a872ac401adc8a44326a0ef14cd215ac9eceacc
-
SHA256
f4a9055f6eb03dfe4fc0420ccf8e6218dce26069c29fce0fbe63c1ad15e83e1c
-
SHA512
aa158a2196849c7a66b309c81022f2222576c00bea9716357be788d83a0ca1e815dc2c9636a2e0d830e007f14979ed4df6e94e2e5ef67f3229d07e652db3106a
-
SSDEEP
24576:epaiGhP1x+96UBz1V/7hw5CILSbvCDpmdLq9zyMfNyAGW6xRZzXeyNbgQF:BiI1k9/HYCtMpK2zyM45fzuYbgQF
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-