General
-
Target
950557a5259845e7714cd4fbd46ae580b2374f234b3de7966decd8e46151114d
-
Size
306KB
-
Sample
250107-f84jnswpds
-
MD5
7bb12981f88cb0461fed2dd523fcca30
-
SHA1
e10779092f58ac10512247b861381c888620691a
-
SHA256
950557a5259845e7714cd4fbd46ae580b2374f234b3de7966decd8e46151114d
-
SHA512
0af28ac466e26ca296f3e93265bdb28c92b9d9ce4af4e74d81e94824a30646f61454992ac0b6edc7d345557ab77c27d0ab159993b7a2a329442886080e2990e9
-
SSDEEP
3072:sr85Cgup4dPSYsUsYYDYYYlYYYYmYYYYYhrKkHQ0YD9hNE0+q7bINgOaFjb/YbOG:k9gZSLyaB/xM0ZQ71GOCj1V
Malware Config
Targets
-
-
Target
950557a5259845e7714cd4fbd46ae580b2374f234b3de7966decd8e46151114d
-
Size
306KB
-
MD5
7bb12981f88cb0461fed2dd523fcca30
-
SHA1
e10779092f58ac10512247b861381c888620691a
-
SHA256
950557a5259845e7714cd4fbd46ae580b2374f234b3de7966decd8e46151114d
-
SHA512
0af28ac466e26ca296f3e93265bdb28c92b9d9ce4af4e74d81e94824a30646f61454992ac0b6edc7d345557ab77c27d0ab159993b7a2a329442886080e2990e9
-
SSDEEP
3072:sr85Cgup4dPSYsUsYYDYYYlYYYYmYYYYYhrKkHQ0YD9hNE0+q7bINgOaFjb/YbOG:k9gZSLyaB/xM0ZQ71GOCj1V
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-