General
-
Target
f3f0383273316e88023ceccf908bf0ae1043f4d789b99b19b22da3508695ded8N.exe
-
Size
6.9MB
-
Sample
241208-e2d5rsxpbp
-
MD5
18719c6cbf0bd5fa2c6a1db3da4259f0
-
SHA1
5def71b31ede252620c75a40fb308d4a4a1d448f
-
SHA256
f3f0383273316e88023ceccf908bf0ae1043f4d789b99b19b22da3508695ded8
-
SHA512
8a16809d454b5d6e90fc9b4a13b4418996d16518e55019ac7665ed9ddc277724b1e9859c17210df34fa659d0e72041fd5c882b2eaacfafb8f5bbe1ce5d14ba9c
-
SSDEEP
196608:S9OaQ54oYY7jLwXjZ41OON2uk3bQWgtyccMEL:Nz5x7jLXkmkU4cFe
Malware Config
Targets
-
-
Target
f3f0383273316e88023ceccf908bf0ae1043f4d789b99b19b22da3508695ded8N.exe
-
Size
6.9MB
-
MD5
18719c6cbf0bd5fa2c6a1db3da4259f0
-
SHA1
5def71b31ede252620c75a40fb308d4a4a1d448f
-
SHA256
f3f0383273316e88023ceccf908bf0ae1043f4d789b99b19b22da3508695ded8
-
SHA512
8a16809d454b5d6e90fc9b4a13b4418996d16518e55019ac7665ed9ddc277724b1e9859c17210df34fa659d0e72041fd5c882b2eaacfafb8f5bbe1ce5d14ba9c
-
SSDEEP
196608:S9OaQ54oYY7jLwXjZ41OON2uk3bQWgtyccMEL:Nz5x7jLXkmkU4cFe
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-