General
-
Target
c3b59c1e209ff53565f3cc59f3e55190b185c92981221d94fce24adfb2720962.exe
-
Size
494KB
-
Sample
241205-dpwnlswjhx
-
MD5
bdb7215e7cd672987f90b8d58b3590c6
-
SHA1
686b246683bb0258b6239eb08d784168c73199ed
-
SHA256
c3b59c1e209ff53565f3cc59f3e55190b185c92981221d94fce24adfb2720962
-
SHA512
3c357e532581424138599d6c95d8903b614615eaf6b4b12ca19b8856ca5f521d51e7044b9a102e4f9b345603412f8c953701a0c3d377cad75ef9dd61b1f30871
-
SSDEEP
12288:EwlBKwrxe+C0T1cy2bZs7nYFZX/E2yQoy/QjJAyL:EwRe+C0T1cJtsEvXs2yQoyaJX
Malware Config
Targets
-
-
Target
c3b59c1e209ff53565f3cc59f3e55190b185c92981221d94fce24adfb2720962.exe
-
Size
494KB
-
MD5
bdb7215e7cd672987f90b8d58b3590c6
-
SHA1
686b246683bb0258b6239eb08d784168c73199ed
-
SHA256
c3b59c1e209ff53565f3cc59f3e55190b185c92981221d94fce24adfb2720962
-
SHA512
3c357e532581424138599d6c95d8903b614615eaf6b4b12ca19b8856ca5f521d51e7044b9a102e4f9b345603412f8c953701a0c3d377cad75ef9dd61b1f30871
-
SSDEEP
12288:EwlBKwrxe+C0T1cy2bZs7nYFZX/E2yQoy/QjJAyL:EwRe+C0T1cJtsEvXs2yQoyaJX
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-