General
-
Target
4200f43d4395fa048d9f3f6b9f470e93f08d858a44062a90f9d2e502ae42548e
-
Size
505KB
-
Sample
250109-3mm15avkct
-
MD5
88a7f6a2569ebb961e372b0f122252ee
-
SHA1
25c8a7bbde1892b01e8d11da8273de46627cf696
-
SHA256
4200f43d4395fa048d9f3f6b9f470e93f08d858a44062a90f9d2e502ae42548e
-
SHA512
397b7c0449c90861c491d42cd78a9a4891d9211f6da1951d1192429f8968644fc2f1530a36600af66ff5e01cb43fe33f72f877fb4d788a6bf362fd88b66ac4d4
-
SSDEEP
12288:Glp9Rkgj08/AJaggegYXWm0/yESHOPqlD:GlhkgjRfegtmwSHOPqlD
Malware Config
Targets
-
-
Target
4200f43d4395fa048d9f3f6b9f470e93f08d858a44062a90f9d2e502ae42548e
-
Size
505KB
-
MD5
88a7f6a2569ebb961e372b0f122252ee
-
SHA1
25c8a7bbde1892b01e8d11da8273de46627cf696
-
SHA256
4200f43d4395fa048d9f3f6b9f470e93f08d858a44062a90f9d2e502ae42548e
-
SHA512
397b7c0449c90861c491d42cd78a9a4891d9211f6da1951d1192429f8968644fc2f1530a36600af66ff5e01cb43fe33f72f877fb4d788a6bf362fd88b66ac4d4
-
SSDEEP
12288:Glp9Rkgj08/AJaggegYXWm0/yESHOPqlD:GlhkgjRfegtmwSHOPqlD
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-