General
-
Target
c4caea85dd39e54f0c5d1bbf16ddf42d63565299adae4931ae3928ccfe4d4b4fN.exe
-
Size
1.4MB
-
Sample
241219-lkkdsazjen
-
MD5
bcda4dd3461fe6054497ce0b9e215cc0
-
SHA1
1eac84a9cfab326fdcadb48ea9b6c387cea0dc3c
-
SHA256
c4caea85dd39e54f0c5d1bbf16ddf42d63565299adae4931ae3928ccfe4d4b4f
-
SHA512
2734ed14734631e50423a47a25b413a22bec441cbc8621d7e5a9a39e49a7434b21e2952ee83ddb347ac1ebc34baa6f264df8bd05a86403f6d60bff9b69ed476b
-
SSDEEP
24576:3r4hIDBrDmgqAAlsfii210/x1+6GJWwhX:KIDRmgLAlsqi2Wx8JJWg
Malware Config
Targets
-
-
Target
c4caea85dd39e54f0c5d1bbf16ddf42d63565299adae4931ae3928ccfe4d4b4fN.exe
-
Size
1.4MB
-
MD5
bcda4dd3461fe6054497ce0b9e215cc0
-
SHA1
1eac84a9cfab326fdcadb48ea9b6c387cea0dc3c
-
SHA256
c4caea85dd39e54f0c5d1bbf16ddf42d63565299adae4931ae3928ccfe4d4b4f
-
SHA512
2734ed14734631e50423a47a25b413a22bec441cbc8621d7e5a9a39e49a7434b21e2952ee83ddb347ac1ebc34baa6f264df8bd05a86403f6d60bff9b69ed476b
-
SSDEEP
24576:3r4hIDBrDmgqAAlsfii210/x1+6GJWwhX:KIDRmgLAlsqi2Wx8JJWg
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-