General
-
Target
b560f5457c5d7fd2ecff655853d90f555682eabec0b78b456837da115c4f4a1b.exe
-
Size
502KB
-
Sample
250101-1yvt1ayrbm
-
MD5
0165261dbbb3064099d3ae6417f89fb9
-
SHA1
2fca8350ef9f6360d98bedccef31c7c4a25e2a84
-
SHA256
b560f5457c5d7fd2ecff655853d90f555682eabec0b78b456837da115c4f4a1b
-
SHA512
3fb1c13b74c7fdabd48456b82b973bbb08e081ff58a1383d3e814fcd7704baf8eb4c261446f6d0c7b6f5f163f3e58a17bf259b5b123bec8c679af428f2541bc3
-
SSDEEP
12288:+FykyL5SEdMbH6AXCX8aeRqC5a/fwQVPLue3Ju07V:8NyL5SEdOaAy6qC5SdVP66Ju2V
Malware Config
Targets
-
-
Target
b560f5457c5d7fd2ecff655853d90f555682eabec0b78b456837da115c4f4a1b.exe
-
Size
502KB
-
MD5
0165261dbbb3064099d3ae6417f89fb9
-
SHA1
2fca8350ef9f6360d98bedccef31c7c4a25e2a84
-
SHA256
b560f5457c5d7fd2ecff655853d90f555682eabec0b78b456837da115c4f4a1b
-
SHA512
3fb1c13b74c7fdabd48456b82b973bbb08e081ff58a1383d3e814fcd7704baf8eb4c261446f6d0c7b6f5f163f3e58a17bf259b5b123bec8c679af428f2541bc3
-
SSDEEP
12288:+FykyL5SEdMbH6AXCX8aeRqC5a/fwQVPLue3Ju07V:8NyL5SEdOaAy6qC5SdVP66Ju2V
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-