General
-
Target
aba1cec8c7881f41969983cbedda610bcf9f8fc08fac2e8def236eeb5108f89a.exe
-
Size
404KB
-
Sample
241126-s4ljhstnap
-
MD5
da5eeb4076a7135f46e22e97519b8dfb
-
SHA1
25c81f13026152c04038fe2ff3781aa8ff307582
-
SHA256
aba1cec8c7881f41969983cbedda610bcf9f8fc08fac2e8def236eeb5108f89a
-
SHA512
8424c8b44f77662c470021375d72f37aaa6819802003af72f9fdf3555f4f5e16e9dcd3583ea4ee7bbad0a1bb4fa68304e99656079fb192104327adde19b7f5af
-
SSDEEP
6144:k9pYXf9sWreD5D+Ox1hwDXPtBSp5GL9p2:uYX45D+QSTtoTG2
Malware Config
Targets
-
-
Target
aba1cec8c7881f41969983cbedda610bcf9f8fc08fac2e8def236eeb5108f89a.exe
-
Size
404KB
-
MD5
da5eeb4076a7135f46e22e97519b8dfb
-
SHA1
25c81f13026152c04038fe2ff3781aa8ff307582
-
SHA256
aba1cec8c7881f41969983cbedda610bcf9f8fc08fac2e8def236eeb5108f89a
-
SHA512
8424c8b44f77662c470021375d72f37aaa6819802003af72f9fdf3555f4f5e16e9dcd3583ea4ee7bbad0a1bb4fa68304e99656079fb192104327adde19b7f5af
-
SSDEEP
6144:k9pYXf9sWreD5D+Ox1hwDXPtBSp5GL9p2:uYX45D+QSTtoTG2
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-