General
-
Target
JaffaCakes118_b1bcdc7a0273abdf43330a7a83061632
-
Size
120KB
-
Sample
250207-cfne7svkcy
-
MD5
b1bcdc7a0273abdf43330a7a83061632
-
SHA1
c9fd57a496e9a33824eb0518f0d348542839601b
-
SHA256
23ad93ee77270226f59b3b56d99f21e4c3977205ebc1559fc2c51de492239630
-
SHA512
dad8ea97bf25284a1b8dabfb3a60f8e5356fc5ea2fd06db7c27ae64c42789047721a3b5f45232110e4adcfc1e00c9b04ac42aa9a31d574410dd9c1069e3a68b2
-
SSDEEP
1536:kxqjQ+P04wsZLnDrCya7cH2rutIzR9gCH2rutI6J:Rr8WDrCyscHTmz/HHTmQ
Malware Config
Targets
-
-
Target
JaffaCakes118_b1bcdc7a0273abdf43330a7a83061632
-
Size
120KB
-
MD5
b1bcdc7a0273abdf43330a7a83061632
-
SHA1
c9fd57a496e9a33824eb0518f0d348542839601b
-
SHA256
23ad93ee77270226f59b3b56d99f21e4c3977205ebc1559fc2c51de492239630
-
SHA512
dad8ea97bf25284a1b8dabfb3a60f8e5356fc5ea2fd06db7c27ae64c42789047721a3b5f45232110e4adcfc1e00c9b04ac42aa9a31d574410dd9c1069e3a68b2
-
SSDEEP
1536:kxqjQ+P04wsZLnDrCya7cH2rutIzR9gCH2rutI6J:Rr8WDrCyscHTmz/HHTmQ
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-