General
-
Target
7f323b3c87b4fce7f33a0f64cbb2ba3730580780f02b6a40bc3a621e94c6a1f1
-
Size
1.7MB
-
Sample
220524-2y6ryaahg4
-
MD5
0186c5c1862b49518a0b3c8441747b48
-
SHA1
c6aa3876fbae8ac71b4cf4169b1325f6468fb221
-
SHA256
7f323b3c87b4fce7f33a0f64cbb2ba3730580780f02b6a40bc3a621e94c6a1f1
-
SHA512
1f2e25dda7b0c188141f026320969830ba0e2328a000878b65efab7962f531443b3374a145fe6433dd26dc8108b0f89341b78b667e6b992900fa0dd0cedf9355
Static task
static1
Behavioral task
behavioral1
Sample
7f323b3c87b4fce7f33a0f64cbb2ba3730580780f02b6a40bc3a621e94c6a1f1.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
7f323b3c87b4fce7f33a0f64cbb2ba3730580780f02b6a40bc3a621e94c6a1f1.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
7f323b3c87b4fce7f33a0f64cbb2ba3730580780f02b6a40bc3a621e94c6a1f1
-
Size
1.7MB
-
MD5
0186c5c1862b49518a0b3c8441747b48
-
SHA1
c6aa3876fbae8ac71b4cf4169b1325f6468fb221
-
SHA256
7f323b3c87b4fce7f33a0f64cbb2ba3730580780f02b6a40bc3a621e94c6a1f1
-
SHA512
1f2e25dda7b0c188141f026320969830ba0e2328a000878b65efab7962f531443b3374a145fe6433dd26dc8108b0f89341b78b667e6b992900fa0dd0cedf9355
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-