General
-
Target
2025-04-15_d85f82208e40233b2d7f4a9d11d70eb2_black-basta_elex_luca-stealer_neshta
-
Size
3.2MB
-
Sample
250415-rcl6asvpx9
-
MD5
d85f82208e40233b2d7f4a9d11d70eb2
-
SHA1
c6a56409eb4aa9c6e37cd7eb6647d52fd9ded6ec
-
SHA256
727dbb5a22364a9877b20616d5767a2d595de042719bf006660f111fc9723580
-
SHA512
5867d76e62395ff24db6b7fc5760be6e6c6a3af1cab4104e1d099893c0f905a341c5eda95f982420b9a45ac05710baf2be3cb07682b88e884108703c40c57380
-
SSDEEP
98304:NupCHZKVXZWJ2rNp3LK00EEfJk3uJT7JdXEnakUR:N2VXZ1/ulfJkUJdXEnaJ
Malware Config
Targets
-
-
Target
2025-04-15_d85f82208e40233b2d7f4a9d11d70eb2_black-basta_elex_luca-stealer_neshta
-
Size
3.2MB
-
MD5
d85f82208e40233b2d7f4a9d11d70eb2
-
SHA1
c6a56409eb4aa9c6e37cd7eb6647d52fd9ded6ec
-
SHA256
727dbb5a22364a9877b20616d5767a2d595de042719bf006660f111fc9723580
-
SHA512
5867d76e62395ff24db6b7fc5760be6e6c6a3af1cab4104e1d099893c0f905a341c5eda95f982420b9a45ac05710baf2be3cb07682b88e884108703c40c57380
-
SSDEEP
98304:NupCHZKVXZWJ2rNp3LK00EEfJk3uJT7JdXEnakUR:N2VXZ1/ulfJkUJdXEnaJ
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-