General
-
Target
893b34da2da4e2d973394660b19074a94542c899fc6cc139f007dc924c8a61f3
-
Size
2.7MB
-
Sample
221013-pqz8zaeaf7
-
MD5
610a5bb500697e04ad2ac6490583ba7a
-
SHA1
42ec3940e0d1ec39921a09e190daa58c82746e4c
-
SHA256
893b34da2da4e2d973394660b19074a94542c899fc6cc139f007dc924c8a61f3
-
SHA512
9f07b5939b62ba01b30b20feddfb21b6550a0ef462954d98c6cfbfda6390a4f98d8b5ba597ce9136c323e58fca57e8326a7a7207d057ed94b40524cf8ed89c04
-
SSDEEP
49152:57M/SzhyhZ+njgVwnD3lH1THNHltpgZu7To/PjssKzVewMMMMMMMMMMMMMMMMMM4:57tz4+ThHyM7To/PopzVzMMMMMMMMMMo
Behavioral task
behavioral1
Sample
893b34da2da4e2d973394660b19074a94542c899fc6cc139f007dc924c8a61f3.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
893b34da2da4e2d973394660b19074a94542c899fc6cc139f007dc924c8a61f3.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
893b34da2da4e2d973394660b19074a94542c899fc6cc139f007dc924c8a61f3
-
Size
2.7MB
-
MD5
610a5bb500697e04ad2ac6490583ba7a
-
SHA1
42ec3940e0d1ec39921a09e190daa58c82746e4c
-
SHA256
893b34da2da4e2d973394660b19074a94542c899fc6cc139f007dc924c8a61f3
-
SHA512
9f07b5939b62ba01b30b20feddfb21b6550a0ef462954d98c6cfbfda6390a4f98d8b5ba597ce9136c323e58fca57e8326a7a7207d057ed94b40524cf8ed89c04
-
SSDEEP
49152:57M/SzhyhZ+njgVwnD3lH1THNHltpgZu7To/PjssKzVewMMMMMMMMMMMMMMMMMM4:57tz4+ThHyM7To/PopzVzMMMMMMMMMMo
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-