General
-
Target
da9b567eeaaef22d9aef1ff1dab1de09ac98f67c33bf0109fe6e6397529f9e70N.exe
-
Size
1.8MB
-
Sample
241218-jvtdbszqhw
-
MD5
60659ce5d7e68a38327dba2197989f00
-
SHA1
42980b84539d948771d35ab577324e66addd9422
-
SHA256
da9b567eeaaef22d9aef1ff1dab1de09ac98f67c33bf0109fe6e6397529f9e70
-
SHA512
d8c58dc26bb5c399056d09f9dd3dc1ca7d9ca0e30fb77fcf0f41630741e6e3c5d654016d97bceac502da8320b2502dd8ad9ef97a38bd622061a5b0cba358785d
-
SSDEEP
24576:RNMFwWMK8zptHroPjSWijyJsVB3Fm27jmHxefUFU7+KgJhzV31s60:1WfqoPj6cxefUFU5gJhtS
Malware Config
Targets
-
-
Target
da9b567eeaaef22d9aef1ff1dab1de09ac98f67c33bf0109fe6e6397529f9e70N.exe
-
Size
1.8MB
-
MD5
60659ce5d7e68a38327dba2197989f00
-
SHA1
42980b84539d948771d35ab577324e66addd9422
-
SHA256
da9b567eeaaef22d9aef1ff1dab1de09ac98f67c33bf0109fe6e6397529f9e70
-
SHA512
d8c58dc26bb5c399056d09f9dd3dc1ca7d9ca0e30fb77fcf0f41630741e6e3c5d654016d97bceac502da8320b2502dd8ad9ef97a38bd622061a5b0cba358785d
-
SSDEEP
24576:RNMFwWMK8zptHroPjSWijyJsVB3Fm27jmHxefUFU7+KgJhzV31s60:1WfqoPj6cxefUFU5gJhtS
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-