General
-
Target
b719cb181d2b1098d3cf1f6bb8e31589_JaffaCakes118
-
Size
85KB
-
Sample
241202-ggamysslbv
-
MD5
b719cb181d2b1098d3cf1f6bb8e31589
-
SHA1
32459f14ba965a1279c61e99e16828688486b0a8
-
SHA256
024dbe064fd87c9ce870d7114b510ab37658ebcc3c5e6ce0a306c8a963e8093d
-
SHA512
a5c8098a63389ae92e2312bd1c044ad5ae352403657cb190c29a614db75cbef6cc78e95de037f37b5668d7fc949c2b911c3a2425897d38675cb292629c126b39
-
SSDEEP
1536:yxqjQ+P04wsZLnDrCDq5BLmXYxKTUtmPej71riZHHdEOK9SH/C7:zr8WDrCDq5BLbdiZH96AH/C7
Malware Config
Targets
-
-
Target
b719cb181d2b1098d3cf1f6bb8e31589_JaffaCakes118
-
Size
85KB
-
MD5
b719cb181d2b1098d3cf1f6bb8e31589
-
SHA1
32459f14ba965a1279c61e99e16828688486b0a8
-
SHA256
024dbe064fd87c9ce870d7114b510ab37658ebcc3c5e6ce0a306c8a963e8093d
-
SHA512
a5c8098a63389ae92e2312bd1c044ad5ae352403657cb190c29a614db75cbef6cc78e95de037f37b5668d7fc949c2b911c3a2425897d38675cb292629c126b39
-
SSDEEP
1536:yxqjQ+P04wsZLnDrCDq5BLmXYxKTUtmPej71riZHHdEOK9SH/C7:zr8WDrCDq5BLbdiZH96AH/C7
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-