General
-
Target
7c0468000467dddccf996df913ac68b019671dd88b394089e4e464eee85d5c12
-
Size
1.7MB
-
Sample
250113-ckna1azrbt
-
MD5
f7ad3e0c6f933caade42bccb9b3d7919
-
SHA1
7be59280317377c0f597c5cc3f3342d990664f38
-
SHA256
7c0468000467dddccf996df913ac68b019671dd88b394089e4e464eee85d5c12
-
SHA512
a1f8a126fbe492ec120f1c5d310999e11dce05d137e579f73d2c44b6b97c7df479d6b37ee5e2566cb9274fe745b8ea3dcc26025ca1006a24d4bfa24c92ee5698
-
SSDEEP
49152:f9Rn7BPX3/okVh6KRV9Rj6qipptMrVkPjz0:3pHQk76yV9J6qetMrejz0
Malware Config
Targets
-
-
Target
7c0468000467dddccf996df913ac68b019671dd88b394089e4e464eee85d5c12
-
Size
1.7MB
-
MD5
f7ad3e0c6f933caade42bccb9b3d7919
-
SHA1
7be59280317377c0f597c5cc3f3342d990664f38
-
SHA256
7c0468000467dddccf996df913ac68b019671dd88b394089e4e464eee85d5c12
-
SHA512
a1f8a126fbe492ec120f1c5d310999e11dce05d137e579f73d2c44b6b97c7df479d6b37ee5e2566cb9274fe745b8ea3dcc26025ca1006a24d4bfa24c92ee5698
-
SSDEEP
49152:f9Rn7BPX3/okVh6KRV9Rj6qipptMrVkPjz0:3pHQk76yV9J6qetMrejz0
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-