General
-
Target
6109b8a728aa9c79ece857052b0d873d3910318e9ceac9b470c32e2afe6114dd
-
Size
1.4MB
-
Sample
220730-2by4ksahb4
-
MD5
697e3b4b6dd79bfd1d428ddbd73c0a4b
-
SHA1
9f9ed8a9b06f37d4074123cf1aa75147dc63ce88
-
SHA256
6109b8a728aa9c79ece857052b0d873d3910318e9ceac9b470c32e2afe6114dd
-
SHA512
ab64ac78c3e7b7f4206347915da558915ce70f64d27c0e941cf5baa26bce7c1c5fe650048bbf120c8cd827e6ecee9eaebe7e4de768716a6ed6b744a0d9c6e7a4
Behavioral task
behavioral1
Sample
6109b8a728aa9c79ece857052b0d873d3910318e9ceac9b470c32e2afe6114dd.exe
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
6109b8a728aa9c79ece857052b0d873d3910318e9ceac9b470c32e2afe6114dd.exe
Resource
win10v2004-20220721-en
Malware Config
Targets
-
-
Target
6109b8a728aa9c79ece857052b0d873d3910318e9ceac9b470c32e2afe6114dd
-
Size
1.4MB
-
MD5
697e3b4b6dd79bfd1d428ddbd73c0a4b
-
SHA1
9f9ed8a9b06f37d4074123cf1aa75147dc63ce88
-
SHA256
6109b8a728aa9c79ece857052b0d873d3910318e9ceac9b470c32e2afe6114dd
-
SHA512
ab64ac78c3e7b7f4206347915da558915ce70f64d27c0e941cf5baa26bce7c1c5fe650048bbf120c8cd827e6ecee9eaebe7e4de768716a6ed6b744a0d9c6e7a4
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-