General
-
Target
acc8880af6901ba3939653abfb9c42c51d3d0f14a5daa2fc58ef15299ca6303f.exe
-
Size
956KB
-
Sample
241205-cwzs6szkgp
-
MD5
1503c14bb5b31a28f3b48e64f61f14c4
-
SHA1
22ee18cec44e41e123ac8617f3ad7d7317f605fe
-
SHA256
acc8880af6901ba3939653abfb9c42c51d3d0f14a5daa2fc58ef15299ca6303f
-
SHA512
be54a06ea1b3ddee347c2093aeb87588162cac171100537f67b240f670185df7c70109fde97ee30e64f6452c65048036ff2d34ef783bc811e85a0cd86834112e
-
SSDEEP
6144:k9KekItZPW+FK4Bd9FK4BdpP+ns9l0CxVqIOlSdGE8fj4gLvMxL2ski86:723KQKaPF9qDIGxr7xExXX86
Malware Config
Targets
-
-
Target
acc8880af6901ba3939653abfb9c42c51d3d0f14a5daa2fc58ef15299ca6303f.exe
-
Size
956KB
-
MD5
1503c14bb5b31a28f3b48e64f61f14c4
-
SHA1
22ee18cec44e41e123ac8617f3ad7d7317f605fe
-
SHA256
acc8880af6901ba3939653abfb9c42c51d3d0f14a5daa2fc58ef15299ca6303f
-
SHA512
be54a06ea1b3ddee347c2093aeb87588162cac171100537f67b240f670185df7c70109fde97ee30e64f6452c65048036ff2d34ef783bc811e85a0cd86834112e
-
SSDEEP
6144:k9KekItZPW+FK4Bd9FK4BdpP+ns9l0CxVqIOlSdGE8fj4gLvMxL2ski86:723KQKaPF9qDIGxr7xExXX86
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-