General
-
Target
7d84dfbc5d7779e32f61a71ddc927989a2d5e11d075709144bf49c1bcaa45efc.exe
-
Size
313KB
-
Sample
241126-shyxqasnhm
-
MD5
689baf48f716752a605f7bef610a9313
-
SHA1
b88b508c6bdd3161b690883317f0c8602f47b2b7
-
SHA256
7d84dfbc5d7779e32f61a71ddc927989a2d5e11d075709144bf49c1bcaa45efc
-
SHA512
72912ea25b5ed12b9160eff5255c1627c1bf46fa09979834381bd1c56f3df44bd3c3ce810bf40855d2d1eeef7582746f7ab8d5155e74ff8858576369b50d0b88
-
SSDEEP
3072:sr85CkR1eRfTslV/gLQ4U4StFd5xP7GUMqj83EMykGatyci6AYmDjObQAa9gQkr0:k9kRkRr8V/gnYTqbqj8TkctmDKIEFMj
Malware Config
Targets
-
-
Target
7d84dfbc5d7779e32f61a71ddc927989a2d5e11d075709144bf49c1bcaa45efc.exe
-
Size
313KB
-
MD5
689baf48f716752a605f7bef610a9313
-
SHA1
b88b508c6bdd3161b690883317f0c8602f47b2b7
-
SHA256
7d84dfbc5d7779e32f61a71ddc927989a2d5e11d075709144bf49c1bcaa45efc
-
SHA512
72912ea25b5ed12b9160eff5255c1627c1bf46fa09979834381bd1c56f3df44bd3c3ce810bf40855d2d1eeef7582746f7ab8d5155e74ff8858576369b50d0b88
-
SSDEEP
3072:sr85CkR1eRfTslV/gLQ4U4StFd5xP7GUMqj83EMykGatyci6AYmDjObQAa9gQkr0:k9kRkRr8V/gnYTqbqj8TkctmDKIEFMj
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-