Detect Neshta Payload

Modifies WinLogon for persistence

Modifies system executable filetype association

Neshta

Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

UAC bypass

Disables RegEdit via registry modification

Disables Task Manager via registry modification

Executes dropped EXE