General
-
Target
afd81f47e82572f7e5d6c65e9a3a532c777177b0aede77a6cdcdcda863d286d2N.exe
-
Size
433KB
-
Sample
241126-vkjxpazpfw
-
MD5
31aef45c5ace1a55263dc6b99c27e770
-
SHA1
23aa2e527b483adffd58fd06d620ae0cb79e96f0
-
SHA256
afd81f47e82572f7e5d6c65e9a3a532c777177b0aede77a6cdcdcda863d286d2
-
SHA512
e7c32dd8e1c6eda45a36519576d23e4507e4ce6bd0da4943959c222d31f465d7c04bfa1ac680be772f9988b011d5272d293a7f03bb1442c1e2974d3e48917875
-
SSDEEP
12288:yr7rSB+2zUM2WJoROZEUT2N9oqs3Kw8q76uIx+QeW:yrazT2N9fgKw76uIxBJ
Malware Config
Targets
-
-
Target
afd81f47e82572f7e5d6c65e9a3a532c777177b0aede77a6cdcdcda863d286d2N.exe
-
Size
433KB
-
MD5
31aef45c5ace1a55263dc6b99c27e770
-
SHA1
23aa2e527b483adffd58fd06d620ae0cb79e96f0
-
SHA256
afd81f47e82572f7e5d6c65e9a3a532c777177b0aede77a6cdcdcda863d286d2
-
SHA512
e7c32dd8e1c6eda45a36519576d23e4507e4ce6bd0da4943959c222d31f465d7c04bfa1ac680be772f9988b011d5272d293a7f03bb1442c1e2974d3e48917875
-
SSDEEP
12288:yr7rSB+2zUM2WJoROZEUT2N9oqs3Kw8q76uIx+QeW:yrazT2N9fgKw76uIxBJ
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-