General
-
Target
479d258076fb2a010c20ce8427a3c0b14f0f43f160fb190af952b4983ed0ed0cN.exe
-
Size
5.0MB
-
Sample
241205-hzsf6atpas
-
MD5
b74f46a001bfb75968c56cc26a3eb4f0
-
SHA1
a52af299b5ff6557aec692f7fa636717eccc7aba
-
SHA256
479d258076fb2a010c20ce8427a3c0b14f0f43f160fb190af952b4983ed0ed0c
-
SHA512
8baac2be0a700ca57c68c52fa0f2a438baa058676490d1dabf39c1a2ea4269ba2f11ef9601a099b0ba007f0bcab964eff86f747bdfdfe31c2e6b2fb75d140b37
-
SSDEEP
98304:ssDtGs0KZPPI3aaP8XEu49+20cu1HSSlZuJXtLYCq:sTsxPPe761h1HSSfuvLYCq
Malware Config
Targets
-
-
Target
479d258076fb2a010c20ce8427a3c0b14f0f43f160fb190af952b4983ed0ed0cN.exe
-
Size
5.0MB
-
MD5
b74f46a001bfb75968c56cc26a3eb4f0
-
SHA1
a52af299b5ff6557aec692f7fa636717eccc7aba
-
SHA256
479d258076fb2a010c20ce8427a3c0b14f0f43f160fb190af952b4983ed0ed0c
-
SHA512
8baac2be0a700ca57c68c52fa0f2a438baa058676490d1dabf39c1a2ea4269ba2f11ef9601a099b0ba007f0bcab964eff86f747bdfdfe31c2e6b2fb75d140b37
-
SSDEEP
98304:ssDtGs0KZPPI3aaP8XEu49+20cu1HSSlZuJXtLYCq:sTsxPPe761h1HSSfuvLYCq
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-