General
-
Target
0b539df91ed6ae2322470cc15c91bc6b8d1629837c3e4fcf954070478b423746
-
Size
494KB
-
Sample
220524-dk2ztsgggp
-
MD5
1db98644fc151d0ada247a88b58e60fe
-
SHA1
20446b70361e6adfba011f1087e0266ce0e5f0a6
-
SHA256
0b539df91ed6ae2322470cc15c91bc6b8d1629837c3e4fcf954070478b423746
-
SHA512
c4b35bfd04320c4ce60cb1eb4605975774e38965ae43b439313b13b7c700b627d31383065c8762521a086b483de7bc4effab2f542095e2b2463c7aad6cf0c6dc
Static task
static1
Behavioral task
behavioral1
Sample
0b539df91ed6ae2322470cc15c91bc6b8d1629837c3e4fcf954070478b423746.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
0b539df91ed6ae2322470cc15c91bc6b8d1629837c3e4fcf954070478b423746.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
0b539df91ed6ae2322470cc15c91bc6b8d1629837c3e4fcf954070478b423746
-
Size
494KB
-
MD5
1db98644fc151d0ada247a88b58e60fe
-
SHA1
20446b70361e6adfba011f1087e0266ce0e5f0a6
-
SHA256
0b539df91ed6ae2322470cc15c91bc6b8d1629837c3e4fcf954070478b423746
-
SHA512
c4b35bfd04320c4ce60cb1eb4605975774e38965ae43b439313b13b7c700b627d31383065c8762521a086b483de7bc4effab2f542095e2b2463c7aad6cf0c6dc
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-