General
-
Target
072fe02ff38f45fe7768e146cca94cfeba546c6e2bc167485ffe130d6d0df1ad
-
Size
5.6MB
-
Sample
220524-s6dlpagda2
-
MD5
3f6dad88c5366d6feef3b3c9b3ad551c
-
SHA1
58dc6f61a3e0819dde80dfb03fff029999053351
-
SHA256
072fe02ff38f45fe7768e146cca94cfeba546c6e2bc167485ffe130d6d0df1ad
-
SHA512
ae1ea889d1a5db7ef684a26a7678e46c3629c666ded4850aed43c615c66e2076b16839ac3c8fdce79e0b72cdf8e44564ce924b642ef7fa636af002f175f02a07
Static task
static1
Behavioral task
behavioral1
Sample
072fe02ff38f45fe7768e146cca94cfeba546c6e2bc167485ffe130d6d0df1ad.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
072fe02ff38f45fe7768e146cca94cfeba546c6e2bc167485ffe130d6d0df1ad.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
072fe02ff38f45fe7768e146cca94cfeba546c6e2bc167485ffe130d6d0df1ad
-
Size
5.6MB
-
MD5
3f6dad88c5366d6feef3b3c9b3ad551c
-
SHA1
58dc6f61a3e0819dde80dfb03fff029999053351
-
SHA256
072fe02ff38f45fe7768e146cca94cfeba546c6e2bc167485ffe130d6d0df1ad
-
SHA512
ae1ea889d1a5db7ef684a26a7678e46c3629c666ded4850aed43c615c66e2076b16839ac3c8fdce79e0b72cdf8e44564ce924b642ef7fa636af002f175f02a07
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-