General
-
Target
beb3ff90559174a616bd2ac6b9a865dcc97630145b1e6acec4e37aab4904c0aa
-
Size
7.3MB
-
Sample
241129-da2ajszrfx
-
MD5
5bf8576c89290ecd3549145bfabeba1d
-
SHA1
c998c30b41c26071380181a8d11ea95b05058487
-
SHA256
beb3ff90559174a616bd2ac6b9a865dcc97630145b1e6acec4e37aab4904c0aa
-
SHA512
f20982e27bcec3229c1edbed5f715fc2a6e1eeec6e1733c724faa4feec13df1e549b21089ab70bdf9149a8cd448537ffa3409cd81c0f0ae49eb6a2b8e7005fa1
-
SSDEEP
196608:bzkPlSNZpAjXKHQx292c8DMvdm0jV46TJl:kPMpAjXuQx292c8yv
Malware Config
Targets
-
-
Target
beb3ff90559174a616bd2ac6b9a865dcc97630145b1e6acec4e37aab4904c0aa
-
Size
7.3MB
-
MD5
5bf8576c89290ecd3549145bfabeba1d
-
SHA1
c998c30b41c26071380181a8d11ea95b05058487
-
SHA256
beb3ff90559174a616bd2ac6b9a865dcc97630145b1e6acec4e37aab4904c0aa
-
SHA512
f20982e27bcec3229c1edbed5f715fc2a6e1eeec6e1733c724faa4feec13df1e549b21089ab70bdf9149a8cd448537ffa3409cd81c0f0ae49eb6a2b8e7005fa1
-
SSDEEP
196608:bzkPlSNZpAjXKHQx292c8DMvdm0jV46TJl:kPMpAjXuQx292c8yv
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-