General
-
Target
241974ecdc573ae4602cfc997089fa79fddb6305b123cd25b922a853ab79ed92
-
Size
246KB
-
Sample
220525-bzdjnsefb3
-
MD5
a0bb2077a644be01ab7ad5a0e8c02079
-
SHA1
c48c015e27f4cd0d08f287c92f3bcd20ca8a0bef
-
SHA256
241974ecdc573ae4602cfc997089fa79fddb6305b123cd25b922a853ab79ed92
-
SHA512
03c864b39a8328b035aecc1c54199839d7115c3809584f5fb5f5f1f2a6f9a3af55b7cfdd3b804cf438cbd973c5af9c350f89aca5335e15a0bf15d27c77d90c24
Static task
static1
Behavioral task
behavioral1
Sample
241974ecdc573ae4602cfc997089fa79fddb6305b123cd25b922a853ab79ed92.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
241974ecdc573ae4602cfc997089fa79fddb6305b123cd25b922a853ab79ed92
-
Size
246KB
-
MD5
a0bb2077a644be01ab7ad5a0e8c02079
-
SHA1
c48c015e27f4cd0d08f287c92f3bcd20ca8a0bef
-
SHA256
241974ecdc573ae4602cfc997089fa79fddb6305b123cd25b922a853ab79ed92
-
SHA512
03c864b39a8328b035aecc1c54199839d7115c3809584f5fb5f5f1f2a6f9a3af55b7cfdd3b804cf438cbd973c5af9c350f89aca5335e15a0bf15d27c77d90c24
-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-