General
-
Target
b1a7101ef80aa6c387dea80962e76810e6ac64d740d7f763a52d7e7304da3606
-
Size
264KB
-
Sample
221121-ngsl4agd22
-
MD5
30c103a128df62ca59a787716b770900
-
SHA1
8d006ccb8798304cad93f67b805346c52350b0c9
-
SHA256
b1a7101ef80aa6c387dea80962e76810e6ac64d740d7f763a52d7e7304da3606
-
SHA512
c811f38b48b4624142ad8e53bbbcaeb01b4bd9a0bc89f9c4b48fa7341f1d67475d483115db6353612c1fd75fa9071f9f2575f5ca3b2b58612e313634b3954bdd
-
SSDEEP
6144:PuaekInuIHERjFJaW7/mf5FwIBkfGPfPZ:8uIHE7J9G52UkfGPnZ
Static task
static1
Behavioral task
behavioral1
Sample
b1a7101ef80aa6c387dea80962e76810e6ac64d740d7f763a52d7e7304da3606.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
b1a7101ef80aa6c387dea80962e76810e6ac64d740d7f763a52d7e7304da3606.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
b1a7101ef80aa6c387dea80962e76810e6ac64d740d7f763a52d7e7304da3606
-
Size
264KB
-
MD5
30c103a128df62ca59a787716b770900
-
SHA1
8d006ccb8798304cad93f67b805346c52350b0c9
-
SHA256
b1a7101ef80aa6c387dea80962e76810e6ac64d740d7f763a52d7e7304da3606
-
SHA512
c811f38b48b4624142ad8e53bbbcaeb01b4bd9a0bc89f9c4b48fa7341f1d67475d483115db6353612c1fd75fa9071f9f2575f5ca3b2b58612e313634b3954bdd
-
SSDEEP
6144:PuaekInuIHERjFJaW7/mf5FwIBkfGPfPZ:8uIHE7J9G52UkfGPnZ
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-