General
-
Target
721c3078b082b4a2b9277c1365ad3a63d66eb6433084c4c993f3de9da8d9a044.exe
-
Size
2.6MB
-
Sample
241205-q9qz3sxmc1
-
MD5
5736f65f9f94ab2a8583d45753c2f62e
-
SHA1
a1da8c7806dfa31c0cc9acafd22a9d15b918d480
-
SHA256
721c3078b082b4a2b9277c1365ad3a63d66eb6433084c4c993f3de9da8d9a044
-
SHA512
4d1cfe40a98cfb3f1b413724b631a6af2d84762d9d4e2a5c54b8c36d399ac3368f45bcd82ae2261ba4ea18e7784bba1a32510a1c73326cb72b4b43bca8f04b2c
-
SSDEEP
49152:0ojIsg8bR+SynebwUnRMKu5tL3BCWj1cGl:0oMsguR45xBCo
Malware Config
Targets
-
-
Target
721c3078b082b4a2b9277c1365ad3a63d66eb6433084c4c993f3de9da8d9a044.exe
-
Size
2.6MB
-
MD5
5736f65f9f94ab2a8583d45753c2f62e
-
SHA1
a1da8c7806dfa31c0cc9acafd22a9d15b918d480
-
SHA256
721c3078b082b4a2b9277c1365ad3a63d66eb6433084c4c993f3de9da8d9a044
-
SHA512
4d1cfe40a98cfb3f1b413724b631a6af2d84762d9d4e2a5c54b8c36d399ac3368f45bcd82ae2261ba4ea18e7784bba1a32510a1c73326cb72b4b43bca8f04b2c
-
SSDEEP
49152:0ojIsg8bR+SynebwUnRMKu5tL3BCWj1cGl:0oMsguR45xBCo
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-