General
-
Target
9bbee4f98b4f54110ff9a0273ecc2f4073fe333ab83b030d8ad57ff5afd0a85c
-
Size
506KB
-
Sample
211130-hrlcwaebcn
-
MD5
65f0cf6aab8d7fe8176d25d9cebfe4f7
-
SHA1
cf5fec8b9a73dc5e73d5e3ff5ecc7a4561664e77
-
SHA256
9bbee4f98b4f54110ff9a0273ecc2f4073fe333ab83b030d8ad57ff5afd0a85c
-
SHA512
c761a66c49dff0822df69a3da49ef5171d5c1931fc2561f7eab03dd4d717cd651a9bbaeee5824b01e1cc3d86d6a3f77eb42da016250417a05d880cf16dc4043d
Static task
static1
Behavioral task
behavioral1
Sample
9bbee4f98b4f54110ff9a0273ecc2f4073fe333ab83b030d8ad57ff5afd0a85c.exe
Resource
win10-en-20211014
Malware Config
Targets
-
-
Target
9bbee4f98b4f54110ff9a0273ecc2f4073fe333ab83b030d8ad57ff5afd0a85c
-
Size
506KB
-
MD5
65f0cf6aab8d7fe8176d25d9cebfe4f7
-
SHA1
cf5fec8b9a73dc5e73d5e3ff5ecc7a4561664e77
-
SHA256
9bbee4f98b4f54110ff9a0273ecc2f4073fe333ab83b030d8ad57ff5afd0a85c
-
SHA512
c761a66c49dff0822df69a3da49ef5171d5c1931fc2561f7eab03dd4d717cd651a9bbaeee5824b01e1cc3d86d6a3f77eb42da016250417a05d880cf16dc4043d
Score10/10-
Detect Neshta Payload
-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Suspicious use of SetThreadContext
-