General
-
Target
122a1fa2284c89a3d11a63c73d6560b4298d9cfef3c76f8dc2323ece452ac869.exe
-
Size
3.3MB
-
Sample
250102-ev9m4avqel
-
MD5
23a9edc8bf859a4f5c53d1282413c0c5
-
SHA1
18048941bb04a14c03e72340d7cf18837d57c9a7
-
SHA256
122a1fa2284c89a3d11a63c73d6560b4298d9cfef3c76f8dc2323ece452ac869
-
SHA512
fbc92171661a73251a31310a8bfbfaedb1b042aaf23a1cb6670daaccb4e65d21ff42c524ea34324eadd2f01fad08580e9268e057cbab94dfd15e1eea7fd09760
-
SSDEEP
24576:WCjxCqNmTBmrDf7I8km0q0WAsci5VRNGaeWXIPufkx8qXgW8fC3fRsI7NN:9bIe5VRJRIWfb+gWgCv37NN
Malware Config
Targets
-
-
Target
122a1fa2284c89a3d11a63c73d6560b4298d9cfef3c76f8dc2323ece452ac869.exe
-
Size
3.3MB
-
MD5
23a9edc8bf859a4f5c53d1282413c0c5
-
SHA1
18048941bb04a14c03e72340d7cf18837d57c9a7
-
SHA256
122a1fa2284c89a3d11a63c73d6560b4298d9cfef3c76f8dc2323ece452ac869
-
SHA512
fbc92171661a73251a31310a8bfbfaedb1b042aaf23a1cb6670daaccb4e65d21ff42c524ea34324eadd2f01fad08580e9268e057cbab94dfd15e1eea7fd09760
-
SSDEEP
24576:WCjxCqNmTBmrDf7I8km0q0WAsci5VRNGaeWXIPufkx8qXgW8fC3fRsI7NN:9bIe5VRJRIWfb+gWgCv37NN
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-