General
-
Target
3e4605a14f0d78804acfa3ab97da149f2f9cc304935577dcbed8ea8479c297dc.exe
-
Size
40KB
-
Sample
250107-pmf1xs1ld1
-
MD5
639f28af5496a4b05409185bf47b6f6f
-
SHA1
4d747ecddde4dd00a4623b0116644ed2e15da423
-
SHA256
3e4605a14f0d78804acfa3ab97da149f2f9cc304935577dcbed8ea8479c297dc
-
SHA512
9585bca22207cdfd31a807317dee6ee7b542a7e433670586467eee850d417052df0f587661444c4ffa6590e821db6250938a5e81cd4679d4917dcb4f104267fa
-
SSDEEP
768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ2ni+:yxqjQ+P04wsZLnDrCTnv
Malware Config
Targets
-
-
Target
3e4605a14f0d78804acfa3ab97da149f2f9cc304935577dcbed8ea8479c297dc.exe
-
Size
40KB
-
MD5
639f28af5496a4b05409185bf47b6f6f
-
SHA1
4d747ecddde4dd00a4623b0116644ed2e15da423
-
SHA256
3e4605a14f0d78804acfa3ab97da149f2f9cc304935577dcbed8ea8479c297dc
-
SHA512
9585bca22207cdfd31a807317dee6ee7b542a7e433670586467eee850d417052df0f587661444c4ffa6590e821db6250938a5e81cd4679d4917dcb4f104267fa
-
SSDEEP
768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ2ni+:yxqjQ+P04wsZLnDrCTnv
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-