General
-
Target
689c71d0b6f732a950acafef947a50fae6ee5a73f60de8347b3a5f77cbb58b76
-
Size
574KB
-
Sample
220524-bgh2faeedq
-
MD5
4bc93bd8ad492bb640f21f6a1ab0fe65
-
SHA1
9d81f54979ae8c7d65db79e405c8665bf8d6f8b1
-
SHA256
689c71d0b6f732a950acafef947a50fae6ee5a73f60de8347b3a5f77cbb58b76
-
SHA512
9ee5c292e7f9293a31c0384977f93a2cebc818624cf874e2f6559680f49e07e5b46ece8e2c5e38920f83cc064087218f694a26480e322bac44a352a54bfe55f5
Static task
static1
Behavioral task
behavioral1
Sample
689c71d0b6f732a950acafef947a50fae6ee5a73f60de8347b3a5f77cbb58b76.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
689c71d0b6f732a950acafef947a50fae6ee5a73f60de8347b3a5f77cbb58b76.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
689c71d0b6f732a950acafef947a50fae6ee5a73f60de8347b3a5f77cbb58b76
-
Size
574KB
-
MD5
4bc93bd8ad492bb640f21f6a1ab0fe65
-
SHA1
9d81f54979ae8c7d65db79e405c8665bf8d6f8b1
-
SHA256
689c71d0b6f732a950acafef947a50fae6ee5a73f60de8347b3a5f77cbb58b76
-
SHA512
9ee5c292e7f9293a31c0384977f93a2cebc818624cf874e2f6559680f49e07e5b46ece8e2c5e38920f83cc064087218f694a26480e322bac44a352a54bfe55f5
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-