General
-
Target
44461bd8ced9485aa3095a9c99f9a2c3d0f6d9d22a2c7f37184a6288e51d395d
-
Size
726KB
-
Sample
221121-nhwp5sca6y
-
MD5
304dfbb009d632f173a817ab0bf1b530
-
SHA1
d6dc90db5d05319073e0551fc0b0debb05020bd4
-
SHA256
44461bd8ced9485aa3095a9c99f9a2c3d0f6d9d22a2c7f37184a6288e51d395d
-
SHA512
7198ea96160dfacfb441f6450f230080f660a36358a7f3e424273f43be0e89140f40f18835845baf5ce300f45c3e583a874aab0470340f68dc27f29a6ff5d2b3
-
SSDEEP
6144:k9wUb/zggQL8fXie4AiL98wOBwV3jBLXqPEGTyiE8NVAk5FzkeutcvIWwLK7Zn02:CzzgfLMSv3j/AyiTNRywIqZ0vXuq75eL
Behavioral task
behavioral1
Sample
44461bd8ced9485aa3095a9c99f9a2c3d0f6d9d22a2c7f37184a6288e51d395d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
44461bd8ced9485aa3095a9c99f9a2c3d0f6d9d22a2c7f37184a6288e51d395d.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
44461bd8ced9485aa3095a9c99f9a2c3d0f6d9d22a2c7f37184a6288e51d395d
-
Size
726KB
-
MD5
304dfbb009d632f173a817ab0bf1b530
-
SHA1
d6dc90db5d05319073e0551fc0b0debb05020bd4
-
SHA256
44461bd8ced9485aa3095a9c99f9a2c3d0f6d9d22a2c7f37184a6288e51d395d
-
SHA512
7198ea96160dfacfb441f6450f230080f660a36358a7f3e424273f43be0e89140f40f18835845baf5ce300f45c3e583a874aab0470340f68dc27f29a6ff5d2b3
-
SSDEEP
6144:k9wUb/zggQL8fXie4AiL98wOBwV3jBLXqPEGTyiE8NVAk5FzkeutcvIWwLK7Zn02:CzzgfLMSv3j/AyiTNRywIqZ0vXuq75eL
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-