General
-
Target
5145dacb24cf625240c5798b092be13e5a2674b4fc226d4ccab11495d025b993
-
Size
567KB
-
Sample
220524-dpslysdfe7
-
MD5
77919d56ebbb4e411250024bb5932437
-
SHA1
348ed6271efe7195984e277e8e094fd7b9587e3c
-
SHA256
5145dacb24cf625240c5798b092be13e5a2674b4fc226d4ccab11495d025b993
-
SHA512
5e45496aa83b3a306fd1ccb8505ff9406f4ac3f640762cf90e6a735c7fc223868c653ebd004accd1a63fbed4008038e636731ef6220d0990bb97b4c50959ee96
Static task
static1
Behavioral task
behavioral1
Sample
5145dacb24cf625240c5798b092be13e5a2674b4fc226d4ccab11495d025b993.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
5145dacb24cf625240c5798b092be13e5a2674b4fc226d4ccab11495d025b993.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
5145dacb24cf625240c5798b092be13e5a2674b4fc226d4ccab11495d025b993
-
Size
567KB
-
MD5
77919d56ebbb4e411250024bb5932437
-
SHA1
348ed6271efe7195984e277e8e094fd7b9587e3c
-
SHA256
5145dacb24cf625240c5798b092be13e5a2674b4fc226d4ccab11495d025b993
-
SHA512
5e45496aa83b3a306fd1ccb8505ff9406f4ac3f640762cf90e6a735c7fc223868c653ebd004accd1a63fbed4008038e636731ef6220d0990bb97b4c50959ee96
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-