General
-
Target
JaffaCakes118_54afd320682184557f14928b4c12da74
-
Size
757KB
-
Sample
250129-j8k9wazpbp
-
MD5
54afd320682184557f14928b4c12da74
-
SHA1
db9379734ee85174171125b852516a1e90f766d6
-
SHA256
9fe70174fd5cfc1d61d3b00fcac1e2822371328000943f23bc14eefee7553b24
-
SHA512
2bc09c383b9bb04f37b1a6899bb0e705ca2135f6754fe378fd6b43c4473819f329931cee09d7c21c01605d12e1b136c597a7e86c64ad318c66a9692b5e6cc915
-
SSDEEP
6144:jyH7qOc6H5c6HcT66vlmrfkZtWYo0jyjeLxB0laEDJ+XTWx6IIqwUM3Sf4HQhW3b:jaan91ifD4iI/biNx2U45ePSlVj
Malware Config
Targets
-
-
Target
JaffaCakes118_54afd320682184557f14928b4c12da74
-
Size
757KB
-
MD5
54afd320682184557f14928b4c12da74
-
SHA1
db9379734ee85174171125b852516a1e90f766d6
-
SHA256
9fe70174fd5cfc1d61d3b00fcac1e2822371328000943f23bc14eefee7553b24
-
SHA512
2bc09c383b9bb04f37b1a6899bb0e705ca2135f6754fe378fd6b43c4473819f329931cee09d7c21c01605d12e1b136c597a7e86c64ad318c66a9692b5e6cc915
-
SSDEEP
6144:jyH7qOc6H5c6HcT66vlmrfkZtWYo0jyjeLxB0laEDJ+XTWx6IIqwUM3Sf4HQhW3b:jaan91ifD4iI/biNx2U45ePSlVj
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-