General
-
Target
eff4b5fe91866b1745b2634915eabcc80d161ad1d60301544ef681b0a19a588a
-
Size
279KB
-
Sample
220524-cz1jwacee4
-
MD5
3fb6333aaeeb7c0771e49f6ce7d6456f
-
SHA1
2f8df3def9d79adde2bf97c434ec3dabceba6eb1
-
SHA256
eff4b5fe91866b1745b2634915eabcc80d161ad1d60301544ef681b0a19a588a
-
SHA512
d07384e5b85a3b79ced611824f009dd1c437ae14be7f6476a018c7aea70d2a24ed84a1058cd5d54c598529c26a6971165a029a18ea2acde905a54d2ac462de97
Static task
static1
Behavioral task
behavioral1
Sample
eff4b5fe91866b1745b2634915eabcc80d161ad1d60301544ef681b0a19a588a.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
eff4b5fe91866b1745b2634915eabcc80d161ad1d60301544ef681b0a19a588a.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
eff4b5fe91866b1745b2634915eabcc80d161ad1d60301544ef681b0a19a588a
-
Size
279KB
-
MD5
3fb6333aaeeb7c0771e49f6ce7d6456f
-
SHA1
2f8df3def9d79adde2bf97c434ec3dabceba6eb1
-
SHA256
eff4b5fe91866b1745b2634915eabcc80d161ad1d60301544ef681b0a19a588a
-
SHA512
d07384e5b85a3b79ced611824f009dd1c437ae14be7f6476a018c7aea70d2a24ed84a1058cd5d54c598529c26a6971165a029a18ea2acde905a54d2ac462de97
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-