General
-
Target
bc77f59111c15312f1eff25a3980a2c34ae481027d1bf61306fb90a930a07b33N.exe
-
Size
889KB
-
Sample
241219-hbv75stlhr
-
MD5
474266bc033b8e2a5c5ba5e3401654e0
-
SHA1
209449bf991617f0cbfff1dc13aed5526aeb019e
-
SHA256
bc77f59111c15312f1eff25a3980a2c34ae481027d1bf61306fb90a930a07b33
-
SHA512
016c395aa3fcc138ac686dea72065337d6a546a8224617fb33cade4eb82245a2950dcfd3e02860ece2a0300fc83d0d3a20590b8de38bbe10bbdd15cbd7759927
-
SSDEEP
24576:WgcTNFhhpPhcLKrlJLxdloxADMSjZqXZL3FTmv1T:QTzzpPhaCLOqtjZObk
Malware Config
Targets
-
-
Target
bc77f59111c15312f1eff25a3980a2c34ae481027d1bf61306fb90a930a07b33N.exe
-
Size
889KB
-
MD5
474266bc033b8e2a5c5ba5e3401654e0
-
SHA1
209449bf991617f0cbfff1dc13aed5526aeb019e
-
SHA256
bc77f59111c15312f1eff25a3980a2c34ae481027d1bf61306fb90a930a07b33
-
SHA512
016c395aa3fcc138ac686dea72065337d6a546a8224617fb33cade4eb82245a2950dcfd3e02860ece2a0300fc83d0d3a20590b8de38bbe10bbdd15cbd7759927
-
SSDEEP
24576:WgcTNFhhpPhcLKrlJLxdloxADMSjZqXZL3FTmv1T:QTzzpPhaCLOqtjZObk
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-