General
-
Target
2362096d587c69b21b6a590611ac5afaf99f4c90665229dfe4a3635a764e4c77
-
Size
766KB
-
Sample
221118-2desqaeg8v
-
MD5
2539e4a9685bc3afe02b93b508506a90
-
SHA1
029b0535042ea03f816df9a0f001703f4c5316e5
-
SHA256
2362096d587c69b21b6a590611ac5afaf99f4c90665229dfe4a3635a764e4c77
-
SHA512
713709e90dacfb692d0d7d4ba8bb7869000bbf2764083a46e74d2ab1e996e38ff5061eea77cda5bb374d820c31daf163c9e85a0379398afed40019b1ad62c7b6
-
SSDEEP
12288:mD50Wzw9vRkm68qbCUUCrHtoUQ6KyAvgz2sHc0Bvbzc7/7oAOivaWAV:5WOUQ6tAvwnzrAOVWAV
Behavioral task
behavioral1
Sample
2362096d587c69b21b6a590611ac5afaf99f4c90665229dfe4a3635a764e4c77.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
2362096d587c69b21b6a590611ac5afaf99f4c90665229dfe4a3635a764e4c77.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
2362096d587c69b21b6a590611ac5afaf99f4c90665229dfe4a3635a764e4c77
-
Size
766KB
-
MD5
2539e4a9685bc3afe02b93b508506a90
-
SHA1
029b0535042ea03f816df9a0f001703f4c5316e5
-
SHA256
2362096d587c69b21b6a590611ac5afaf99f4c90665229dfe4a3635a764e4c77
-
SHA512
713709e90dacfb692d0d7d4ba8bb7869000bbf2764083a46e74d2ab1e996e38ff5061eea77cda5bb374d820c31daf163c9e85a0379398afed40019b1ad62c7b6
-
SSDEEP
12288:mD50Wzw9vRkm68qbCUUCrHtoUQ6KyAvgz2sHc0Bvbzc7/7oAOivaWAV:5WOUQ6tAvwnzrAOVWAV
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-