General
-
Target
1d7c5ef4acf3006f3a9d66c3f6bfaba61dea69a044ae5e243b33516016c5b771
-
Size
353KB
-
Sample
221118-2dgbjseg8x
-
MD5
45520cbb254bdf36e6b582cb08e40100
-
SHA1
45894ea0f37810e4b5ed9c5547074bef8d411584
-
SHA256
1d7c5ef4acf3006f3a9d66c3f6bfaba61dea69a044ae5e243b33516016c5b771
-
SHA512
2c55feddf79e759dba2e1fb2a4120b6120cf5e96dbef479abc0e226c796e24d7a068c083a3442496d65f442f819d448b1ad9b05368c647c78aa0c7a74bb6dce6
-
SSDEEP
6144:i9Na1Zg30ZTNWSG6/7aDtWCn54YqcDe/3pXsGKLu8NmcZKlg1Vlhw/aY:HzrWSG6zIWC5kcDePtmxmc20VlhgaY
Behavioral task
behavioral1
Sample
1d7c5ef4acf3006f3a9d66c3f6bfaba61dea69a044ae5e243b33516016c5b771.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
1d7c5ef4acf3006f3a9d66c3f6bfaba61dea69a044ae5e243b33516016c5b771.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
1d7c5ef4acf3006f3a9d66c3f6bfaba61dea69a044ae5e243b33516016c5b771
-
Size
353KB
-
MD5
45520cbb254bdf36e6b582cb08e40100
-
SHA1
45894ea0f37810e4b5ed9c5547074bef8d411584
-
SHA256
1d7c5ef4acf3006f3a9d66c3f6bfaba61dea69a044ae5e243b33516016c5b771
-
SHA512
2c55feddf79e759dba2e1fb2a4120b6120cf5e96dbef479abc0e226c796e24d7a068c083a3442496d65f442f819d448b1ad9b05368c647c78aa0c7a74bb6dce6
-
SSDEEP
6144:i9Na1Zg30ZTNWSG6/7aDtWCn54YqcDe/3pXsGKLu8NmcZKlg1Vlhw/aY:HzrWSG6zIWC5kcDePtmxmc20VlhgaY
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-