General
-
Target
253cb105af7690b20b94893ac29fdfc0dfa718a1166be68c08820efce3aa84b4N.exe
-
Size
272KB
-
Sample
241130-e33jraxjcn
-
MD5
2447acad63ef16345beabd063b41e360
-
SHA1
4d3a3a7c723e15dcfd1f7ee01c6ce6b54dd341b6
-
SHA256
253cb105af7690b20b94893ac29fdfc0dfa718a1166be68c08820efce3aa84b4
-
SHA512
ff4e18d826844d267678ce461aabe7bf567e2311089606ddd73afb8d9470a0e11dfe42cf06f1bb225521ab30ca693d7330b16c9ab9d1dfdae2f7b365a8a25d4e
-
SSDEEP
3072:sr85Ce9PhKtkbecpt6vIlCSMF0t+elnhP2rCRr85C:k9eTKKbJ6vIlMxe/+Ct9
Malware Config
Targets
-
-
Target
253cb105af7690b20b94893ac29fdfc0dfa718a1166be68c08820efce3aa84b4N.exe
-
Size
272KB
-
MD5
2447acad63ef16345beabd063b41e360
-
SHA1
4d3a3a7c723e15dcfd1f7ee01c6ce6b54dd341b6
-
SHA256
253cb105af7690b20b94893ac29fdfc0dfa718a1166be68c08820efce3aa84b4
-
SHA512
ff4e18d826844d267678ce461aabe7bf567e2311089606ddd73afb8d9470a0e11dfe42cf06f1bb225521ab30ca693d7330b16c9ab9d1dfdae2f7b365a8a25d4e
-
SSDEEP
3072:sr85Ce9PhKtkbecpt6vIlCSMF0t+elnhP2rCRr85C:k9eTKKbJ6vIlMxe/+Ct9
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-