General
-
Target
82bf5d2b51597fb4bae46db7f2db8844460c0226a4bfef3304ffc410f7043e55.exe
-
Size
933KB
-
Sample
250124-hxa44awmaw
-
MD5
28bd5b844cdae3fcd88245c96028acb6
-
SHA1
3799a72fbb36648789333022fb3ffc0241eb15f0
-
SHA256
82bf5d2b51597fb4bae46db7f2db8844460c0226a4bfef3304ffc410f7043e55
-
SHA512
a4c6f1bea94d7f30d3124657b5865f85135b6789c0a3df270f49e60f91e96fac172dd0cc5ad86f909b8fb942418ab5f543d5e3f9cfd7ed341bf123bb9730c95a
-
SSDEEP
6144:k9IW4PmT1oh8aquaGHxk12+Mo94949494949494949494949494949494949y:84PI1oCdIa
Malware Config
Targets
-
-
Target
82bf5d2b51597fb4bae46db7f2db8844460c0226a4bfef3304ffc410f7043e55.exe
-
Size
933KB
-
MD5
28bd5b844cdae3fcd88245c96028acb6
-
SHA1
3799a72fbb36648789333022fb3ffc0241eb15f0
-
SHA256
82bf5d2b51597fb4bae46db7f2db8844460c0226a4bfef3304ffc410f7043e55
-
SHA512
a4c6f1bea94d7f30d3124657b5865f85135b6789c0a3df270f49e60f91e96fac172dd0cc5ad86f909b8fb942418ab5f543d5e3f9cfd7ed341bf123bb9730c95a
-
SSDEEP
6144:k9IW4PmT1oh8aquaGHxk12+Mo94949494949494949494949494949494949y:84PI1oCdIa
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-