General
-
Target
7ab79263c8a1d57ab0a8cc81657ac128e0a06d52b651eab96e024f33a83e1be7.exe
-
Size
1.2MB
-
Sample
241201-zctjda1mbw
-
MD5
2562bdcc1cc19eb7938d8bd25b15524a
-
SHA1
1f424ea46667c0eff0d21f92566554a9f85cee8b
-
SHA256
7ab79263c8a1d57ab0a8cc81657ac128e0a06d52b651eab96e024f33a83e1be7
-
SHA512
9320ee0ed1e6c5dd72552f50b9f100df08d832a5c684727c2561e7b52d5800c60c30ccd1113c38029dce657c66fd0878e5dff288778dbaade745111035695787
-
SSDEEP
24576:UwevrNgVgYykahX0/s7WGSL4tphfWXWMf1:UVuVtyjRqYWX1
Malware Config
Targets
-
-
Target
7ab79263c8a1d57ab0a8cc81657ac128e0a06d52b651eab96e024f33a83e1be7.exe
-
Size
1.2MB
-
MD5
2562bdcc1cc19eb7938d8bd25b15524a
-
SHA1
1f424ea46667c0eff0d21f92566554a9f85cee8b
-
SHA256
7ab79263c8a1d57ab0a8cc81657ac128e0a06d52b651eab96e024f33a83e1be7
-
SHA512
9320ee0ed1e6c5dd72552f50b9f100df08d832a5c684727c2561e7b52d5800c60c30ccd1113c38029dce657c66fd0878e5dff288778dbaade745111035695787
-
SSDEEP
24576:UwevrNgVgYykahX0/s7WGSL4tphfWXWMf1:UVuVtyjRqYWX1
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-