General
-
Target
6faa6b70401bda86a53e85c24e767fb918206a83d365ce6e7dcf4df7b3982b58
-
Size
694KB
-
Sample
220524-czgrrscec9
-
MD5
379a1a8ee773f5cac581582ecb564edf
-
SHA1
0bbc529e9f65ddc70adb582fd4f637de5c5a57c1
-
SHA256
6faa6b70401bda86a53e85c24e767fb918206a83d365ce6e7dcf4df7b3982b58
-
SHA512
86b5ecf17982169f138cd43839654551ad2148d34fdd99af04397b807895aee89de44c17e26272046fa0cafea99e034894f43ecdca76d0401449ecd81c4ebb61
Static task
static1
Behavioral task
behavioral1
Sample
6faa6b70401bda86a53e85c24e767fb918206a83d365ce6e7dcf4df7b3982b58.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
6faa6b70401bda86a53e85c24e767fb918206a83d365ce6e7dcf4df7b3982b58.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
6faa6b70401bda86a53e85c24e767fb918206a83d365ce6e7dcf4df7b3982b58
-
Size
694KB
-
MD5
379a1a8ee773f5cac581582ecb564edf
-
SHA1
0bbc529e9f65ddc70adb582fd4f637de5c5a57c1
-
SHA256
6faa6b70401bda86a53e85c24e767fb918206a83d365ce6e7dcf4df7b3982b58
-
SHA512
86b5ecf17982169f138cd43839654551ad2148d34fdd99af04397b807895aee89de44c17e26272046fa0cafea99e034894f43ecdca76d0401449ecd81c4ebb61
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-