General
-
Target
tmp/44281f6f-da9d-409d-b3d5-f6214f797be4_1004.exe
-
Size
2.5MB
-
Sample
211228-ftqz2acadn
-
MD5
606adb006089363b2be9638a921fdbb5
-
SHA1
7c423f710d6cf5a499fc7ccd8bc3ea4d2c8914ad
-
SHA256
c932b542b49acba2270fd3cea64bb7151f2878fc388816261fea1d7e6a0eb821
-
SHA512
87442c663b6eeaffad842a12f1c08b2ed8b76749443c734a9cef30175a97dff80a77f1a553a6312853df16f728dbd629baa4c9868393e5e6e4e60f4e1b4575d4
Static task
static1
Behavioral task
behavioral1
Sample
tmp/44281f6f-da9d-409d-b3d5-f6214f797be4_1004.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
tmp/44281f6f-da9d-409d-b3d5-f6214f797be4_1004.exe
Resource
win10-en-20211208
Malware Config
Targets
-
-
Target
tmp/44281f6f-da9d-409d-b3d5-f6214f797be4_1004.exe
-
Size
2.5MB
-
MD5
606adb006089363b2be9638a921fdbb5
-
SHA1
7c423f710d6cf5a499fc7ccd8bc3ea4d2c8914ad
-
SHA256
c932b542b49acba2270fd3cea64bb7151f2878fc388816261fea1d7e6a0eb821
-
SHA512
87442c663b6eeaffad842a12f1c08b2ed8b76749443c734a9cef30175a97dff80a77f1a553a6312853df16f728dbd629baa4c9868393e5e6e4e60f4e1b4575d4
Score10/10-
Detect Neshta Payload
-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Loads dropped DLL
-