General
-
Target
d0086a1210755d902e85fc1a658e8432511d89c3804e9776349d364f8f99351d
-
Size
326KB
-
Sample
220213-3leclacbd8
-
MD5
11da7b49f535cb39535d13fe8ea22ba0
-
SHA1
d65e84d7246bb023747ed1372857c2008ee4b71e
-
SHA256
d0086a1210755d902e85fc1a658e8432511d89c3804e9776349d364f8f99351d
-
SHA512
4831b93b2deaee648ab67f2bb921ed1c1614dd3e4d6c7b3b12636cdfb591167d48dafb0ca55e5c3117373ebb13ab6a6635a2c28f8c39529933f4d9460afd5221
Static task
static1
Behavioral task
behavioral1
Sample
d0086a1210755d902e85fc1a658e8432511d89c3804e9776349d364f8f99351d.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
d0086a1210755d902e85fc1a658e8432511d89c3804e9776349d364f8f99351d.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
d0086a1210755d902e85fc1a658e8432511d89c3804e9776349d364f8f99351d
-
Size
326KB
-
MD5
11da7b49f535cb39535d13fe8ea22ba0
-
SHA1
d65e84d7246bb023747ed1372857c2008ee4b71e
-
SHA256
d0086a1210755d902e85fc1a658e8432511d89c3804e9776349d364f8f99351d
-
SHA512
4831b93b2deaee648ab67f2bb921ed1c1614dd3e4d6c7b3b12636cdfb591167d48dafb0ca55e5c3117373ebb13ab6a6635a2c28f8c39529933f4d9460afd5221
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-