General
-
Target
6a9e8d350482b270a46e1f9ce384cd047ac5d402379253664967a79e2eb3d7c6.exe
-
Size
1006KB
-
Sample
250101-1yh57swrf1
-
MD5
edce00820d20875e552f640d42f35ee6
-
SHA1
7d7bdf5a507cf4a61180c0a1107b4cbbaf113260
-
SHA256
6a9e8d350482b270a46e1f9ce384cd047ac5d402379253664967a79e2eb3d7c6
-
SHA512
d0d371ecdf046e8dedcb24d007258e806cb758f165f49aedebbe253fdefa53a5807e70478d32df31d3f8a4013e581db048f78caef50e8617f2b897077b5ac0b6
-
SSDEEP
24576:/vksLWtkrPi37NzHDA6Yg5dsfoTzpVTMk66k66666T666R666P66066V66E66K6o:/fzrPi37NzHDA6Y0dsfofpVTMk66k66F
Malware Config
Targets
-
-
Target
6a9e8d350482b270a46e1f9ce384cd047ac5d402379253664967a79e2eb3d7c6.exe
-
Size
1006KB
-
MD5
edce00820d20875e552f640d42f35ee6
-
SHA1
7d7bdf5a507cf4a61180c0a1107b4cbbaf113260
-
SHA256
6a9e8d350482b270a46e1f9ce384cd047ac5d402379253664967a79e2eb3d7c6
-
SHA512
d0d371ecdf046e8dedcb24d007258e806cb758f165f49aedebbe253fdefa53a5807e70478d32df31d3f8a4013e581db048f78caef50e8617f2b897077b5ac0b6
-
SSDEEP
24576:/vksLWtkrPi37NzHDA6Yg5dsfoTzpVTMk66k66666T666R666P66066V66E66K6o:/fzrPi37NzHDA6Y0dsfofpVTMk66k66F
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-