General
-
Target
374c55eb20213eccb0e6e4628fe5b037f7671825c636012a02b780742078b58d
-
Size
6MB
-
Sample
220625-bxcjlabda2
-
MD5
4dce371ad817a4ff4f19c7963a63ad6d
-
SHA1
603fa53519041f7e8d829dd70701283dfe4aa5ee
-
SHA256
374c55eb20213eccb0e6e4628fe5b037f7671825c636012a02b780742078b58d
-
SHA512
b49fe6569420a1bcff3408967d4b7f3fd80d9e50ba2a0665dfd2c95556e4d025ca3154fdafef9039182541497c821856b1e3f8b884c013a05ad1876f076891b2
Static task
static1
Behavioral task
behavioral1
Sample
374c55eb20213eccb0e6e4628fe5b037f7671825c636012a02b780742078b58d.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
374c55eb20213eccb0e6e4628fe5b037f7671825c636012a02b780742078b58d.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
374c55eb20213eccb0e6e4628fe5b037f7671825c636012a02b780742078b58d
-
Size
6MB
-
MD5
4dce371ad817a4ff4f19c7963a63ad6d
-
SHA1
603fa53519041f7e8d829dd70701283dfe4aa5ee
-
SHA256
374c55eb20213eccb0e6e4628fe5b037f7671825c636012a02b780742078b58d
-
SHA512
b49fe6569420a1bcff3408967d4b7f3fd80d9e50ba2a0665dfd2c95556e4d025ca3154fdafef9039182541497c821856b1e3f8b884c013a05ad1876f076891b2
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-