General
-
Target
eb2b7df333c9fe197fb2787671bf9dbd15fe228ea6b30f37388b82fc410fad15
-
Size
110KB
-
Sample
220524-s52bcscaej
-
MD5
0bd1a7a14fbe9065f7a4f98d300878ad
-
SHA1
5a88c06fb1358133c657ad8e1087e70ab23811c3
-
SHA256
eb2b7df333c9fe197fb2787671bf9dbd15fe228ea6b30f37388b82fc410fad15
-
SHA512
976df52b07bd07d946c88a6d82c30cde285315e42f617101649f6bcae0f6db38437ea8957bd4bf4488579767df3d6cfb331186cd3d654e530338494a2c478a2c
Static task
static1
Behavioral task
behavioral1
Sample
eb2b7df333c9fe197fb2787671bf9dbd15fe228ea6b30f37388b82fc410fad15.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
eb2b7df333c9fe197fb2787671bf9dbd15fe228ea6b30f37388b82fc410fad15.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
eb2b7df333c9fe197fb2787671bf9dbd15fe228ea6b30f37388b82fc410fad15
-
Size
110KB
-
MD5
0bd1a7a14fbe9065f7a4f98d300878ad
-
SHA1
5a88c06fb1358133c657ad8e1087e70ab23811c3
-
SHA256
eb2b7df333c9fe197fb2787671bf9dbd15fe228ea6b30f37388b82fc410fad15
-
SHA512
976df52b07bd07d946c88a6d82c30cde285315e42f617101649f6bcae0f6db38437ea8957bd4bf4488579767df3d6cfb331186cd3d654e530338494a2c478a2c
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-