General
-
Target
ce927bc414df3289b825ae68077068d475af2bc807b229920fc854b4e3f9bbbd
-
Size
705KB
-
Sample
220525-alap7acgf2
-
MD5
be57499ac57c784d6d4bf4a766d5a5fc
-
SHA1
7d3c5dffa38ac47cd74ca5bf72acd4e3226eca17
-
SHA256
ce927bc414df3289b825ae68077068d475af2bc807b229920fc854b4e3f9bbbd
-
SHA512
55eca7b652fe7b325aa01dc254c83be5e6187a86a03cbf93c5a0ab3ebba17c086757ae31f723567e22cb2c2ecd87567ccd6a225f8cd2b9b5bb4c93ee45ce5d8b
Malware Config
Targets
-
-
Target
ce927bc414df3289b825ae68077068d475af2bc807b229920fc854b4e3f9bbbd
-
Size
705KB
-
MD5
be57499ac57c784d6d4bf4a766d5a5fc
-
SHA1
7d3c5dffa38ac47cd74ca5bf72acd4e3226eca17
-
SHA256
ce927bc414df3289b825ae68077068d475af2bc807b229920fc854b4e3f9bbbd
-
SHA512
55eca7b652fe7b325aa01dc254c83be5e6187a86a03cbf93c5a0ab3ebba17c086757ae31f723567e22cb2c2ecd87567ccd6a225f8cd2b9b5bb4c93ee45ce5d8b
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-