General
-
Target
3b2f12293992f65c7c2a0c6b2ff38af2bc8e5aafc1829b65d1819850e6d40fd8.exe
-
Size
1.2MB
-
Sample
241219-gy9hlssqcq
-
MD5
63869f22aace76826afa504a460be671
-
SHA1
920f149a6cbd16dd5888db69a3bdb4b07abd6e24
-
SHA256
3b2f12293992f65c7c2a0c6b2ff38af2bc8e5aafc1829b65d1819850e6d40fd8
-
SHA512
d3803f69f45e1457f0b851937ff28ccdcb3e644495310767a95f7e9364cc89240a7121513a050cf1a1da311a5fc53319b303cc0bd6ad9d01325b8c292ca709dc
-
SSDEEP
12288:QPgDWFlgackSxvJaSkSxvJaKvJaqGu1uQFmKIIXfb8h:QID7aVMBavMBaKBaqd8QFfvE
Malware Config
Targets
-
-
Target
3b2f12293992f65c7c2a0c6b2ff38af2bc8e5aafc1829b65d1819850e6d40fd8.exe
-
Size
1.2MB
-
MD5
63869f22aace76826afa504a460be671
-
SHA1
920f149a6cbd16dd5888db69a3bdb4b07abd6e24
-
SHA256
3b2f12293992f65c7c2a0c6b2ff38af2bc8e5aafc1829b65d1819850e6d40fd8
-
SHA512
d3803f69f45e1457f0b851937ff28ccdcb3e644495310767a95f7e9364cc89240a7121513a050cf1a1da311a5fc53319b303cc0bd6ad9d01325b8c292ca709dc
-
SSDEEP
12288:QPgDWFlgackSxvJaSkSxvJaKvJaqGu1uQFmKIIXfb8h:QID7aVMBavMBaKBaqd8QFfvE
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-