General

  • Target

    7075731b407ca27d74470515c0fff9e8eec31d47f57d62141f97d2b03e2aea00.exe

  • Size

    1.0MB

  • Sample

    241210-neyqbsyqdq

  • MD5

    9a6bb6773ab17847f705d9bb5e76e438

  • SHA1

    c4904731b8665b50e849a2e3f706c43f28f97752

  • SHA256

    7075731b407ca27d74470515c0fff9e8eec31d47f57d62141f97d2b03e2aea00

  • SHA512

    764660ada308f08f4c7bff5c5d1f94df4641f39130d727f210bb3321766bbc5429627f772be135cef9cab8881a716b06532ab884445e91163e69c1c9b7d76c83

  • SSDEEP

    24576:tfySSQydK/3chi6zkOW5OFzJKh5qzwjO0h0YTO:xvykkGOW5OFzJeBjOuE

Malware Config

Targets

    • Target

      7075731b407ca27d74470515c0fff9e8eec31d47f57d62141f97d2b03e2aea00.exe

    • Size

      1.0MB

    • MD5

      9a6bb6773ab17847f705d9bb5e76e438

    • SHA1

      c4904731b8665b50e849a2e3f706c43f28f97752

    • SHA256

      7075731b407ca27d74470515c0fff9e8eec31d47f57d62141f97d2b03e2aea00

    • SHA512

      764660ada308f08f4c7bff5c5d1f94df4641f39130d727f210bb3321766bbc5429627f772be135cef9cab8881a716b06532ab884445e91163e69c1c9b7d76c83

    • SSDEEP

      24576:tfySSQydK/3chi6zkOW5OFzJKh5qzwjO0h0YTO:xvykkGOW5OFzJeBjOuE

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Neshta family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks