General
-
Target
d59991f87a25e941fa590a25d0278064ff1d9d22849f7ea22cf8581c68481484
-
Size
4.8MB
-
Sample
220701-dtfsyshghk
-
MD5
4c52a69ae617789c5d9377b91f5c85ff
-
SHA1
7ab099d4b99acd30f82c07e36fe7c340c1a0631d
-
SHA256
d59991f87a25e941fa590a25d0278064ff1d9d22849f7ea22cf8581c68481484
-
SHA512
4712ee466352168dea45314c0a752b7dbbec7b5bd570ae9980c40ee670b8bb168ff3ed2fc608089a1e033a95e5aac98c63a9b1b6cefee940ed281f39cd374eca
Static task
static1
Behavioral task
behavioral1
Sample
d59991f87a25e941fa590a25d0278064ff1d9d22849f7ea22cf8581c68481484.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
d59991f87a25e941fa590a25d0278064ff1d9d22849f7ea22cf8581c68481484.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
d59991f87a25e941fa590a25d0278064ff1d9d22849f7ea22cf8581c68481484
-
Size
4.8MB
-
MD5
4c52a69ae617789c5d9377b91f5c85ff
-
SHA1
7ab099d4b99acd30f82c07e36fe7c340c1a0631d
-
SHA256
d59991f87a25e941fa590a25d0278064ff1d9d22849f7ea22cf8581c68481484
-
SHA512
4712ee466352168dea45314c0a752b7dbbec7b5bd570ae9980c40ee670b8bb168ff3ed2fc608089a1e033a95e5aac98c63a9b1b6cefee940ed281f39cd374eca
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-