General
-
Target
47f7f712ba1e649e377750087240482a0dd25eea149c440bb6c040582ba10d43N.exe
-
Size
416KB
-
Sample
241206-fa359a1kav
-
MD5
168a6bf48db8806f00c47f9f9a98e630
-
SHA1
2003c990b8b5cb2505c9f7bb2b7a1dfc3d340542
-
SHA256
47f7f712ba1e649e377750087240482a0dd25eea149c440bb6c040582ba10d43
-
SHA512
617ecdb86b8ea9f7a4861e62e7ee7ae4989460b4daa813a76026bf4e026fea44ca8b5abf8636f2dfbe61099c0a589abaa4d77c8631cafd487bbffb4222b9d501
-
SSDEEP
6144:k9M3isQNjODH5am4rU5x31cMBZQIhH849nS4FBQn+m1:L3fMmWMKMBTH8499FBHE
Malware Config
Targets
-
-
Target
47f7f712ba1e649e377750087240482a0dd25eea149c440bb6c040582ba10d43N.exe
-
Size
416KB
-
MD5
168a6bf48db8806f00c47f9f9a98e630
-
SHA1
2003c990b8b5cb2505c9f7bb2b7a1dfc3d340542
-
SHA256
47f7f712ba1e649e377750087240482a0dd25eea149c440bb6c040582ba10d43
-
SHA512
617ecdb86b8ea9f7a4861e62e7ee7ae4989460b4daa813a76026bf4e026fea44ca8b5abf8636f2dfbe61099c0a589abaa4d77c8631cafd487bbffb4222b9d501
-
SSDEEP
6144:k9M3isQNjODH5am4rU5x31cMBZQIhH849nS4FBQn+m1:L3fMmWMKMBTH8499FBHE
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-