General
-
Target
144edc310f1600feaf8b773a56f2a66de2623c9df4f6d4ef1cc959a61a352966
-
Size
731KB
-
Sample
221119-ngxaaadc3v
-
MD5
51b121404323590ed2c25e1701608ee0
-
SHA1
2c68f35c1698779f35076dd84deb675832c53096
-
SHA256
144edc310f1600feaf8b773a56f2a66de2623c9df4f6d4ef1cc959a61a352966
-
SHA512
cb941e6678bf894e0a2a92d5a0ff7d0d490dc1ae234878491eaf732448c6c60c20c5026ff718c9672daf51dc57ed287f213c4a800975cdbaa9aab1cda46896bf
-
SSDEEP
12288:afKb7nH5lrPo37AzHTA63I0ihE4UEQrrNtIECORGv35ELAfXExy8p06:afKbT5lrPo37AzHTA63/cfU9IEU353fm
Behavioral task
behavioral1
Sample
144edc310f1600feaf8b773a56f2a66de2623c9df4f6d4ef1cc959a61a352966.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
144edc310f1600feaf8b773a56f2a66de2623c9df4f6d4ef1cc959a61a352966.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
144edc310f1600feaf8b773a56f2a66de2623c9df4f6d4ef1cc959a61a352966
-
Size
731KB
-
MD5
51b121404323590ed2c25e1701608ee0
-
SHA1
2c68f35c1698779f35076dd84deb675832c53096
-
SHA256
144edc310f1600feaf8b773a56f2a66de2623c9df4f6d4ef1cc959a61a352966
-
SHA512
cb941e6678bf894e0a2a92d5a0ff7d0d490dc1ae234878491eaf732448c6c60c20c5026ff718c9672daf51dc57ed287f213c4a800975cdbaa9aab1cda46896bf
-
SSDEEP
12288:afKb7nH5lrPo37AzHTA63I0ihE4UEQrrNtIECORGv35ELAfXExy8p06:afKbT5lrPo37AzHTA63/cfU9IEU353fm
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-