General
-
Target
945e51aca163deb6f5fd0f91a142973623827c03574d3f61bb8fcef3a5f2cc3a
-
Size
1.5MB
-
Sample
220206-mq6dwahea9
-
MD5
f647978963d3f94a26439baade73d753
-
SHA1
803efd9628480f2a0547ba53ac2b98344137a37d
-
SHA256
945e51aca163deb6f5fd0f91a142973623827c03574d3f61bb8fcef3a5f2cc3a
-
SHA512
f43ce5895fed966970a8fc5a453f36d88b748af38de162d187210aac280234fd525448d42ed2149f871f8646e51773a565e03fb71fedf0b6a1bb859b110c457d
Static task
static1
Behavioral task
behavioral1
Sample
945e51aca163deb6f5fd0f91a142973623827c03574d3f61bb8fcef3a5f2cc3a.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
945e51aca163deb6f5fd0f91a142973623827c03574d3f61bb8fcef3a5f2cc3a.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
945e51aca163deb6f5fd0f91a142973623827c03574d3f61bb8fcef3a5f2cc3a
-
Size
1.5MB
-
MD5
f647978963d3f94a26439baade73d753
-
SHA1
803efd9628480f2a0547ba53ac2b98344137a37d
-
SHA256
945e51aca163deb6f5fd0f91a142973623827c03574d3f61bb8fcef3a5f2cc3a
-
SHA512
f43ce5895fed966970a8fc5a453f36d88b748af38de162d187210aac280234fd525448d42ed2149f871f8646e51773a565e03fb71fedf0b6a1bb859b110c457d
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-