General
-
Target
7f7ff656b2daef0f14997833b37cf66d41f4f97d3e54320e86a97c024af16f06
-
Size
133KB
-
Sample
221119-3bz7baae2v
-
MD5
4510dc20445644a0153493ab95e2e660
-
SHA1
81df128fbc718e8184578676a742dd52bd4e02d1
-
SHA256
7f7ff656b2daef0f14997833b37cf66d41f4f97d3e54320e86a97c024af16f06
-
SHA512
c6cff4be8b43ccd228b493149a22f457066778c79a81d43e05921c9d3397f8f2f6dc50b349e82468b75d3468f2e93321927053de7473918e27209de0e1c30669
-
SSDEEP
1536:yxqjQ+P04wsZLnDrCA1RtvYlzWWH2iycinGMsPicTVTw1B4F3Y8SwOxqjQ+P04wv:zr8WDrCKtQdWhxaiAw1B4VY4r8WDrC
Static task
static1
Behavioral task
behavioral1
Sample
7f7ff656b2daef0f14997833b37cf66d41f4f97d3e54320e86a97c024af16f06.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
7f7ff656b2daef0f14997833b37cf66d41f4f97d3e54320e86a97c024af16f06.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
7f7ff656b2daef0f14997833b37cf66d41f4f97d3e54320e86a97c024af16f06
-
Size
133KB
-
MD5
4510dc20445644a0153493ab95e2e660
-
SHA1
81df128fbc718e8184578676a742dd52bd4e02d1
-
SHA256
7f7ff656b2daef0f14997833b37cf66d41f4f97d3e54320e86a97c024af16f06
-
SHA512
c6cff4be8b43ccd228b493149a22f457066778c79a81d43e05921c9d3397f8f2f6dc50b349e82468b75d3468f2e93321927053de7473918e27209de0e1c30669
-
SSDEEP
1536:yxqjQ+P04wsZLnDrCA1RtvYlzWWH2iycinGMsPicTVTw1B4F3Y8SwOxqjQ+P04wv:zr8WDrCKtQdWhxaiAw1B4VY4r8WDrC
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-