General
-
Target
JaffaCakes118_8e39ddc4dcea638cc3ce10c7c9e4666b
-
Size
227KB
-
Sample
250204-a5cnwsyqaw
-
MD5
8e39ddc4dcea638cc3ce10c7c9e4666b
-
SHA1
06a532c9059b15466e0e0de7a2f78a101d3bee00
-
SHA256
8fdbf538b7650efb41fb65269578af86c679cc0577399057f7385931c77075fb
-
SHA512
dcac3b07b076cccf3a3b998376038683d64939116e3d99539a8a6870a235cd40d8e0a611febac82481975cd7f599827fbe3476c2ce94db867c13a241927b91eb
-
SSDEEP
3072:Rr8WDrC8PkADIRnrxSuyJ1gjuYUEHjE2YKHMq8gus0ccntpQQDO+41YmbQy4tpQ2:tuDcIRouWgi0LDZoQ1VY7y+Q1VY7yw
Malware Config
Targets
-
-
Target
JaffaCakes118_8e39ddc4dcea638cc3ce10c7c9e4666b
-
Size
227KB
-
MD5
8e39ddc4dcea638cc3ce10c7c9e4666b
-
SHA1
06a532c9059b15466e0e0de7a2f78a101d3bee00
-
SHA256
8fdbf538b7650efb41fb65269578af86c679cc0577399057f7385931c77075fb
-
SHA512
dcac3b07b076cccf3a3b998376038683d64939116e3d99539a8a6870a235cd40d8e0a611febac82481975cd7f599827fbe3476c2ce94db867c13a241927b91eb
-
SSDEEP
3072:Rr8WDrC8PkADIRnrxSuyJ1gjuYUEHjE2YKHMq8gus0ccntpQQDO+41YmbQy4tpQ2:tuDcIRouWgi0LDZoQ1VY7y+Q1VY7yw
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-