General
-
Target
05c54682ac583c6c89945dff45b14470d148b7a27545d8fa06dd20c80e18fe72
-
Size
884KB
-
Sample
221119-lme7vaac4y
-
MD5
c2d46cdb9202baf21719d2c124dd138c
-
SHA1
3318e7d342cb6ef2843dbd174dc388fd505cdc5e
-
SHA256
05c54682ac583c6c89945dff45b14470d148b7a27545d8fa06dd20c80e18fe72
-
SHA512
efe7e9f7ac01122a13da339823bf591ec465c58e393e717ab1b7583a5ce7977ae043f4dc6e054e39021c03a212ea5eac94a6fdcc5d569901c0a335e423fa31a4
-
SSDEEP
12288:MQc3lT7af41ePBRYuQLKpqeUhbTv5OFgNuPPpHSganTUX6ARtb2h:MpkaCqT5TBWgNQ7aTUX6ARtb2h
Behavioral task
behavioral1
Sample
05c54682ac583c6c89945dff45b14470d148b7a27545d8fa06dd20c80e18fe72.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
05c54682ac583c6c89945dff45b14470d148b7a27545d8fa06dd20c80e18fe72.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
05c54682ac583c6c89945dff45b14470d148b7a27545d8fa06dd20c80e18fe72
-
Size
884KB
-
MD5
c2d46cdb9202baf21719d2c124dd138c
-
SHA1
3318e7d342cb6ef2843dbd174dc388fd505cdc5e
-
SHA256
05c54682ac583c6c89945dff45b14470d148b7a27545d8fa06dd20c80e18fe72
-
SHA512
efe7e9f7ac01122a13da339823bf591ec465c58e393e717ab1b7583a5ce7977ae043f4dc6e054e39021c03a212ea5eac94a6fdcc5d569901c0a335e423fa31a4
-
SSDEEP
12288:MQc3lT7af41ePBRYuQLKpqeUhbTv5OFgNuPPpHSganTUX6ARtb2h:MpkaCqT5TBWgNQ7aTUX6ARtb2h
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-