General
-
Target
74ee3c113ce0f9b9142f73061e6e93325a9d8fa1b40460c4a6d5fe0f2a234e60.exe
-
Size
40KB
-
Sample
250121-sg6aeazkas
-
MD5
7c4acd48d5682c0bb48512098a761f12
-
SHA1
51de96baa7bdac984b9dfc979cbe612c9e8e5766
-
SHA256
74ee3c113ce0f9b9142f73061e6e93325a9d8fa1b40460c4a6d5fe0f2a234e60
-
SHA512
8b296634bebbe28e1129898a1dbace355b277e19fc0a7c21ff62bee3c7c226482ff4e1675ecfb33f5b22656c6f8c2bca0624a4947bf6f1511f0ddd1277e45906
-
SSDEEP
768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJl7pm4Fx1/r:JxqjQ+P04wsmJCs7Ph/r
Malware Config
Targets
-
-
Target
74ee3c113ce0f9b9142f73061e6e93325a9d8fa1b40460c4a6d5fe0f2a234e60.exe
-
Size
40KB
-
MD5
7c4acd48d5682c0bb48512098a761f12
-
SHA1
51de96baa7bdac984b9dfc979cbe612c9e8e5766
-
SHA256
74ee3c113ce0f9b9142f73061e6e93325a9d8fa1b40460c4a6d5fe0f2a234e60
-
SHA512
8b296634bebbe28e1129898a1dbace355b277e19fc0a7c21ff62bee3c7c226482ff4e1675ecfb33f5b22656c6f8c2bca0624a4947bf6f1511f0ddd1277e45906
-
SSDEEP
768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJl7pm4Fx1/r:JxqjQ+P04wsmJCs7Ph/r
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-