General
-
Target
dcf0bc6e5fae826b6560f95f0a221f4629c14f5e67727a9b13e774904a6f7b62.exe
-
Size
3.3MB
-
Sample
241130-drah6atnaj
-
MD5
3159a9d6ec8b44a1d4affd3346008451
-
SHA1
0a74b930cdd50951b0c8600008d6c32c6368823b
-
SHA256
dcf0bc6e5fae826b6560f95f0a221f4629c14f5e67727a9b13e774904a6f7b62
-
SHA512
8f095fbf2d10ca65f0658aaac5e9311b67db2590bcd502b7dfb25097aab5765de213970152d0e76ec6e2d6874cbe08e48011a72c1c069f6991fad54101d5165e
-
SSDEEP
24576:ZAsY7vxIf0SRcah+7EYASA6luiG8O+BWAMbP5dzH2TD2wSj2zLT:mlIfTYASA6IiG8vBWAMr5dS6fuT
Malware Config
Targets
-
-
Target
dcf0bc6e5fae826b6560f95f0a221f4629c14f5e67727a9b13e774904a6f7b62.exe
-
Size
3.3MB
-
MD5
3159a9d6ec8b44a1d4affd3346008451
-
SHA1
0a74b930cdd50951b0c8600008d6c32c6368823b
-
SHA256
dcf0bc6e5fae826b6560f95f0a221f4629c14f5e67727a9b13e774904a6f7b62
-
SHA512
8f095fbf2d10ca65f0658aaac5e9311b67db2590bcd502b7dfb25097aab5765de213970152d0e76ec6e2d6874cbe08e48011a72c1c069f6991fad54101d5165e
-
SSDEEP
24576:ZAsY7vxIf0SRcah+7EYASA6luiG8O+BWAMbP5dzH2TD2wSj2zLT:mlIfTYASA6IiG8vBWAMr5dS6fuT
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-