General
-
Target
c0b34699cc918492de5e13424d868cdd0c58ea200014e9177c034ea7aed445a7
-
Size
1.0MB
-
Sample
220525-cpzvlabfhj
-
MD5
65e64787c3fc13d199320862c76f55dc
-
SHA1
3a2bf04bae0bd5bb0f0666b8a8a77a3eef51fd9e
-
SHA256
c0b34699cc918492de5e13424d868cdd0c58ea200014e9177c034ea7aed445a7
-
SHA512
8c5782386b655fff09e8bcff39ea89f1cb061b39789a7aef17a5f57f41a55c553fd076428b21483c281ded0fa178516bad9499cfc22a529ef996e7e73d14b591
Static task
static1
Behavioral task
behavioral1
Sample
c0b34699cc918492de5e13424d868cdd0c58ea200014e9177c034ea7aed445a7.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
c0b34699cc918492de5e13424d868cdd0c58ea200014e9177c034ea7aed445a7.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
c0b34699cc918492de5e13424d868cdd0c58ea200014e9177c034ea7aed445a7
-
Size
1.0MB
-
MD5
65e64787c3fc13d199320862c76f55dc
-
SHA1
3a2bf04bae0bd5bb0f0666b8a8a77a3eef51fd9e
-
SHA256
c0b34699cc918492de5e13424d868cdd0c58ea200014e9177c034ea7aed445a7
-
SHA512
8c5782386b655fff09e8bcff39ea89f1cb061b39789a7aef17a5f57f41a55c553fd076428b21483c281ded0fa178516bad9499cfc22a529ef996e7e73d14b591
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-