General
-
Target
470b656e2e5fe73f181dde7c7e862979c38d6203452bcd354c906700cd7f5d86.exe
-
Size
778KB
-
Sample
241205-hk7brstjew
-
MD5
507768ad57b2fb5b699d9901a3c521dc
-
SHA1
6af26b407ac97e20f9c5f955c1400582b0d9dee6
-
SHA256
470b656e2e5fe73f181dde7c7e862979c38d6203452bcd354c906700cd7f5d86
-
SHA512
0c1a0bb7f1fe1a08321fcccfabc2c6afa1c86e0ecb8c80d6a6c12a5798513d6c2a2d2f81789de3348310cfbc730dd1a93e3fe390c2d4722119757a7205608c18
-
SSDEEP
12288:BsNYFLuwOwOwOwOwpwRwOwOwrmQQhYgfQkmHOhPjhwJscbdVC:BsNAuwOwOwOwOwpwRwOwOwImHiwJsP
Malware Config
Targets
-
-
Target
470b656e2e5fe73f181dde7c7e862979c38d6203452bcd354c906700cd7f5d86.exe
-
Size
778KB
-
MD5
507768ad57b2fb5b699d9901a3c521dc
-
SHA1
6af26b407ac97e20f9c5f955c1400582b0d9dee6
-
SHA256
470b656e2e5fe73f181dde7c7e862979c38d6203452bcd354c906700cd7f5d86
-
SHA512
0c1a0bb7f1fe1a08321fcccfabc2c6afa1c86e0ecb8c80d6a6c12a5798513d6c2a2d2f81789de3348310cfbc730dd1a93e3fe390c2d4722119757a7205608c18
-
SSDEEP
12288:BsNYFLuwOwOwOwOwpwRwOwOwrmQQhYgfQkmHOhPjhwJscbdVC:BsNAuwOwOwOwOwpwRwOwOwImHiwJsP
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-