General
-
Target
555806507e303f6df302cb3fbe8945da4ef4b1d3733e5f83ba4db57443771305.exe
-
Size
178KB
-
Sample
250101-qxkyasyqhj
-
MD5
5bc25646c6880d3ae1610d8eaaa2fa7f
-
SHA1
72591222c6cdf982c65648dea31ad154d64b13ac
-
SHA256
555806507e303f6df302cb3fbe8945da4ef4b1d3733e5f83ba4db57443771305
-
SHA512
8ad43da6ef2363bf61d90a6dc20c55d195b13990b38f94041cbfb37e12886a84f039e404fcbabe07049d592b7bb8d4adbde6600c59c095f9278239ea8bd9df0b
-
SSDEEP
3072:sr85Cn2n1A9HYqtDQkZ7owoE/rXzCrNRydN2M6BuoXzCrNRydN2M6BuK:k9n2e9RkXwoE/ANG2MNG2v
Malware Config
Targets
-
-
Target
555806507e303f6df302cb3fbe8945da4ef4b1d3733e5f83ba4db57443771305.exe
-
Size
178KB
-
MD5
5bc25646c6880d3ae1610d8eaaa2fa7f
-
SHA1
72591222c6cdf982c65648dea31ad154d64b13ac
-
SHA256
555806507e303f6df302cb3fbe8945da4ef4b1d3733e5f83ba4db57443771305
-
SHA512
8ad43da6ef2363bf61d90a6dc20c55d195b13990b38f94041cbfb37e12886a84f039e404fcbabe07049d592b7bb8d4adbde6600c59c095f9278239ea8bd9df0b
-
SSDEEP
3072:sr85Cn2n1A9HYqtDQkZ7owoE/rXzCrNRydN2M6BuoXzCrNRydN2M6BuK:k9n2e9RkXwoE/ANG2MNG2v
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-