General
-
Target
cfefccea6295a29098502870bf67d24f46fe0cbd82bcb1ba33c87b952407feaf.exe
-
Size
118KB
-
Sample
241125-qr4hfsvqdn
-
MD5
4996d2caa05b79aaecf68a981c6f8087
-
SHA1
f592f3f55f57600d119d6fe4feec54abc011eb89
-
SHA256
cfefccea6295a29098502870bf67d24f46fe0cbd82bcb1ba33c87b952407feaf
-
SHA512
819d0fe31cdcce80a76e28d3bfe3c1078fc8273bf323f1e0fc46f507a01006bf7f99672497bc1270f1cd055913b3c4869397af6ba09e65e3ee4e5be37f6c2da5
-
SSDEEP
1536:JxqjQ+P04wsmJCw6lmGnFZgOhS3mIwiD2SGVoli3xJTjpKxn5SkxX:sr85CBVF2OhS3nwDpD37Kzd
Malware Config
Targets
-
-
Target
cfefccea6295a29098502870bf67d24f46fe0cbd82bcb1ba33c87b952407feaf.exe
-
Size
118KB
-
MD5
4996d2caa05b79aaecf68a981c6f8087
-
SHA1
f592f3f55f57600d119d6fe4feec54abc011eb89
-
SHA256
cfefccea6295a29098502870bf67d24f46fe0cbd82bcb1ba33c87b952407feaf
-
SHA512
819d0fe31cdcce80a76e28d3bfe3c1078fc8273bf323f1e0fc46f507a01006bf7f99672497bc1270f1cd055913b3c4869397af6ba09e65e3ee4e5be37f6c2da5
-
SSDEEP
1536:JxqjQ+P04wsmJCw6lmGnFZgOhS3mIwiD2SGVoli3xJTjpKxn5SkxX:sr85CBVF2OhS3nwDpD37Kzd
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-