General
-
Target
b863d30f90e802a7903eebfd3acd75f42e737c4ab6b6f7f2738a426359a57692
-
Size
611KB
-
Sample
211130-h8859secbk
-
MD5
3c44d1f747e00a0f010d6017a417c552
-
SHA1
cc7955b522b1bfdd4ec6f202690a94bcdd314941
-
SHA256
b863d30f90e802a7903eebfd3acd75f42e737c4ab6b6f7f2738a426359a57692
-
SHA512
2188d2c388e400b934d82659a975df58edceee73b308e5e6eee32600ea9a4406b5e44ac719f6852eda972fcfee1fc991c0c706d48075813b42d5dbb130c7cd56
Static task
static1
Behavioral task
behavioral1
Sample
b863d30f90e802a7903eebfd3acd75f42e737c4ab6b6f7f2738a426359a57692.exe
Resource
win10-en-20211104
Malware Config
Targets
-
-
Target
b863d30f90e802a7903eebfd3acd75f42e737c4ab6b6f7f2738a426359a57692
-
Size
611KB
-
MD5
3c44d1f747e00a0f010d6017a417c552
-
SHA1
cc7955b522b1bfdd4ec6f202690a94bcdd314941
-
SHA256
b863d30f90e802a7903eebfd3acd75f42e737c4ab6b6f7f2738a426359a57692
-
SHA512
2188d2c388e400b934d82659a975df58edceee73b308e5e6eee32600ea9a4406b5e44ac719f6852eda972fcfee1fc991c0c706d48075813b42d5dbb130c7cd56
Score10/10-
Detect Neshta Payload
-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Suspicious use of SetThreadContext
-