General
-
Target
37eb15a27115342058ddc30350a96999058ecbe17cea61d6ab968a24d56b57d2
-
Size
349KB
-
Sample
241229-1ev1naxnf1
-
MD5
828518d090503ab6d73b3f247bbbcacc
-
SHA1
f7dfd7d877912b575bb587812bc0eb1d14457618
-
SHA256
37eb15a27115342058ddc30350a96999058ecbe17cea61d6ab968a24d56b57d2
-
SHA512
942528c8157b14f4fee1f191433c8f091684a48310b993c95c63b97fd57f067f3a0e0465f0178acab0e86ea0a9821e446df7b3efb8f5ef47745c0e9a9554b593
-
SSDEEP
3072:sr85CXY/yLhAHtDbrZkoT0Azw4rFOaH2tvhOEA1RJCir86SrSrv6Ia37n77v00hg:k9XY/yLaHtDPEMOs2t0EyL+yar740I
Malware Config
Targets
-
-
Target
37eb15a27115342058ddc30350a96999058ecbe17cea61d6ab968a24d56b57d2
-
Size
349KB
-
MD5
828518d090503ab6d73b3f247bbbcacc
-
SHA1
f7dfd7d877912b575bb587812bc0eb1d14457618
-
SHA256
37eb15a27115342058ddc30350a96999058ecbe17cea61d6ab968a24d56b57d2
-
SHA512
942528c8157b14f4fee1f191433c8f091684a48310b993c95c63b97fd57f067f3a0e0465f0178acab0e86ea0a9821e446df7b3efb8f5ef47745c0e9a9554b593
-
SSDEEP
3072:sr85CXY/yLhAHtDbrZkoT0Azw4rFOaH2tvhOEA1RJCir86SrSrv6Ia37n77v00hg:k9XY/yLaHtDPEMOs2t0EyL+yar740I
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-