General
-
Target
8cce9ebcb7c672d4b0d7eb3e375fc8d988e0bfca6087d437fc26eb76a86e0056N.exe
-
Size
1.4MB
-
Sample
241203-et418avqfl
-
MD5
f3f8bb8189d49463576ff1e6fb7e45e0
-
SHA1
7702eba81b21ebc988c02f6bb2fb08132aff0d4c
-
SHA256
8cce9ebcb7c672d4b0d7eb3e375fc8d988e0bfca6087d437fc26eb76a86e0056
-
SHA512
b6bc9f1dcd3b9bb92110f58613d1d7747ecd86d7c08933db5c72d3b346d70d513827e7ea690946fa1dfe8d8cfb45697b512a32cdabc3609f0924fa3f2b9068b0
-
SSDEEP
24576:Xjh8+TnoBp4AoFSk+K2sxlSVjJ3FZenFUR5Dnj1gCDb4lP1kO4mLiwWKoBp4A/tn:XjhXnoBp1W2sxHeR1IriyoBp3l
Malware Config
Targets
-
-
Target
8cce9ebcb7c672d4b0d7eb3e375fc8d988e0bfca6087d437fc26eb76a86e0056N.exe
-
Size
1.4MB
-
MD5
f3f8bb8189d49463576ff1e6fb7e45e0
-
SHA1
7702eba81b21ebc988c02f6bb2fb08132aff0d4c
-
SHA256
8cce9ebcb7c672d4b0d7eb3e375fc8d988e0bfca6087d437fc26eb76a86e0056
-
SHA512
b6bc9f1dcd3b9bb92110f58613d1d7747ecd86d7c08933db5c72d3b346d70d513827e7ea690946fa1dfe8d8cfb45697b512a32cdabc3609f0924fa3f2b9068b0
-
SSDEEP
24576:Xjh8+TnoBp4AoFSk+K2sxlSVjJ3FZenFUR5Dnj1gCDb4lP1kO4mLiwWKoBp4A/tn:XjhXnoBp1W2sxHeR1IriyoBp3l
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-