General
-
Target
93241f109af7ff8170a7d6d67a87ab7dbbf424e4f44018cec6da3bae1d06021d.exe
-
Size
144KB
-
Sample
241127-eekzssslhp
-
MD5
1f513120128d2ffc8595c5945e402f3d
-
SHA1
806feadac318e292bf4738f3abd770a11af5f40f
-
SHA256
93241f109af7ff8170a7d6d67a87ab7dbbf424e4f44018cec6da3bae1d06021d
-
SHA512
6beac04a770ba198547306f0a89b1735859376d840c87a20e8112c9d201fd2e647593264fa15348998d5e53b4b735c731f186240ee9c79f58fc59327a82f0102
-
SSDEEP
3072:sr85CquaJG4vlP6k4qmKjfHYToQjSJ9sfQvTQ:k9RaJFvlP1jgTWJ4QvTQ
Malware Config
Targets
-
-
Target
93241f109af7ff8170a7d6d67a87ab7dbbf424e4f44018cec6da3bae1d06021d.exe
-
Size
144KB
-
MD5
1f513120128d2ffc8595c5945e402f3d
-
SHA1
806feadac318e292bf4738f3abd770a11af5f40f
-
SHA256
93241f109af7ff8170a7d6d67a87ab7dbbf424e4f44018cec6da3bae1d06021d
-
SHA512
6beac04a770ba198547306f0a89b1735859376d840c87a20e8112c9d201fd2e647593264fa15348998d5e53b4b735c731f186240ee9c79f58fc59327a82f0102
-
SSDEEP
3072:sr85CquaJG4vlP6k4qmKjfHYToQjSJ9sfQvTQ:k9RaJFvlP1jgTWJ4QvTQ
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-