General
-
Target
f62f4438f2c9dacf8155e96a4a8c89e500129ff8fe3c19a1c7b8e330ee36fe70.exe
-
Size
7.0MB
-
Sample
241202-14xksa1pdl
-
MD5
e3d069f5bbb4b2805415b1fde819edc4
-
SHA1
1bc40f546858c583621f85e3734f5b53da9d4daa
-
SHA256
f62f4438f2c9dacf8155e96a4a8c89e500129ff8fe3c19a1c7b8e330ee36fe70
-
SHA512
60d771fdc5d92fec2ff0f23b1cd50606b44b32f714aaa9a894bd1e61b55aeaf5974b181c18f78877f2de3bbdeb74eac9408fd3c10478a2b7b7a8ba882f364a65
-
SSDEEP
98304:cLTO+VdVTYOUaRzUvpP3B2TUPwQFBfcWvv6:YTO+uOVypPwCBfcWa
Malware Config
Targets
-
-
Target
f62f4438f2c9dacf8155e96a4a8c89e500129ff8fe3c19a1c7b8e330ee36fe70.exe
-
Size
7.0MB
-
MD5
e3d069f5bbb4b2805415b1fde819edc4
-
SHA1
1bc40f546858c583621f85e3734f5b53da9d4daa
-
SHA256
f62f4438f2c9dacf8155e96a4a8c89e500129ff8fe3c19a1c7b8e330ee36fe70
-
SHA512
60d771fdc5d92fec2ff0f23b1cd50606b44b32f714aaa9a894bd1e61b55aeaf5974b181c18f78877f2de3bbdeb74eac9408fd3c10478a2b7b7a8ba882f364a65
-
SSDEEP
98304:cLTO+VdVTYOUaRzUvpP3B2TUPwQFBfcWvv6:YTO+uOVypPwCBfcWa
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-