General

  • Target

    7f5922e332a43c860f01f478fc5c23c5c8602f75f8153aee707258679e022d66.exe

  • Size

    436KB

  • Sample

    241206-281cxayqfn

  • MD5

    c6fb406b34075f1fa021fda310690539

  • SHA1

    c5437ff7a9fa22a030cf39f25f5e9ad77da420ac

  • SHA256

    7f5922e332a43c860f01f478fc5c23c5c8602f75f8153aee707258679e022d66

  • SHA512

    38187d13519e7e579f2ec31942959dbb799b554785894387e3c70786b3639bedc5611ff482f0fec05c65249612dd012d15757b26cfb9e064d5a19ea67c09ddf6

  • SSDEEP

    6144:w9PP9ckZj/AHx+/KfglxANSWYsSjohjPWuzh+oi+OXryWMk2rcRX2E4X:8PakZj/AHAyf/8Pjowc4oi7x2rcYX

Malware Config

Targets

    • Target

      7f5922e332a43c860f01f478fc5c23c5c8602f75f8153aee707258679e022d66.exe

    • Size

      436KB

    • MD5

      c6fb406b34075f1fa021fda310690539

    • SHA1

      c5437ff7a9fa22a030cf39f25f5e9ad77da420ac

    • SHA256

      7f5922e332a43c860f01f478fc5c23c5c8602f75f8153aee707258679e022d66

    • SHA512

      38187d13519e7e579f2ec31942959dbb799b554785894387e3c70786b3639bedc5611ff482f0fec05c65249612dd012d15757b26cfb9e064d5a19ea67c09ddf6

    • SSDEEP

      6144:w9PP9ckZj/AHx+/KfglxANSWYsSjohjPWuzh+oi+OXryWMk2rcRX2E4X:8PakZj/AHAyf/8Pjowc4oi7x2rcYX

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Neshta family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks