General
-
Target
4e8648879bc5cea8bf99f1b40d9f61c04857a8eb5c19f06176ceb520e262e341
-
Size
365KB
-
Sample
241130-xxd83sskdy
-
MD5
f9ff994ec282223c986e854bd2192d82
-
SHA1
1be6a69d2518f9943c69537dfe87aab29e02f383
-
SHA256
4e8648879bc5cea8bf99f1b40d9f61c04857a8eb5c19f06176ceb520e262e341
-
SHA512
d708a910f49e01d92ef76d12ff55585d596c043b9cf617184ad75d44c37bbc9121ff71420665538aeee1359ad0b724570c9f6dba0e43e44a837fbf52f69b8abe
-
SSDEEP
3072:sr85CcAVnyL8QhJmxn90RAqt/7kDX1+WrlSdtdq0swIPcxr85C:k9pnUAFA9tkU6CPqXGN9
Malware Config
Targets
-
-
Target
4e8648879bc5cea8bf99f1b40d9f61c04857a8eb5c19f06176ceb520e262e341
-
Size
365KB
-
MD5
f9ff994ec282223c986e854bd2192d82
-
SHA1
1be6a69d2518f9943c69537dfe87aab29e02f383
-
SHA256
4e8648879bc5cea8bf99f1b40d9f61c04857a8eb5c19f06176ceb520e262e341
-
SHA512
d708a910f49e01d92ef76d12ff55585d596c043b9cf617184ad75d44c37bbc9121ff71420665538aeee1359ad0b724570c9f6dba0e43e44a837fbf52f69b8abe
-
SSDEEP
3072:sr85CcAVnyL8QhJmxn90RAqt/7kDX1+WrlSdtdq0swIPcxr85C:k9pnUAFA9tkU6CPqXGN9
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-