General
-
Target
cfc1e2a6a9907638412933639ebcadec584add082dc0897a99927d5902fb530f
-
Size
3.0MB
-
Sample
241201-dz5dhaznak
-
MD5
053521c38f9f1f895d1750dcaa61313c
-
SHA1
32c58227fc95e29ad5eef1505213c7052410463b
-
SHA256
cfc1e2a6a9907638412933639ebcadec584add082dc0897a99927d5902fb530f
-
SHA512
3252d65efc09beec221446b49ca1a6f5db3885573ea3e989fda4697e7728fa0032e02362df6fab109ad76d8b92fe5b8f3f2a88812c6dff4c8e22083a409e55d0
-
SSDEEP
49152:5JLEZn0hHcuspfeSvy5OElNHGsT0AsVxDq8Ty7bSDD:5JPhHRHtQsTC2LWD
Malware Config
Targets
-
-
Target
cfc1e2a6a9907638412933639ebcadec584add082dc0897a99927d5902fb530f
-
Size
3.0MB
-
MD5
053521c38f9f1f895d1750dcaa61313c
-
SHA1
32c58227fc95e29ad5eef1505213c7052410463b
-
SHA256
cfc1e2a6a9907638412933639ebcadec584add082dc0897a99927d5902fb530f
-
SHA512
3252d65efc09beec221446b49ca1a6f5db3885573ea3e989fda4697e7728fa0032e02362df6fab109ad76d8b92fe5b8f3f2a88812c6dff4c8e22083a409e55d0
-
SSDEEP
49152:5JLEZn0hHcuspfeSvy5OElNHGsT0AsVxDq8Ty7bSDD:5JPhHRHtQsTC2LWD
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-