General
-
Target
61fbe4b8e8a709e683785ed2aa7ac2c83bba53092cfed941b9c04ae0c0c6048d
-
Size
364KB
-
Sample
221122-1lx4ladf3x
-
MD5
3dd1cf4790cd31af28bcff1aef503671
-
SHA1
c58fd96841c2eaf0ff07bcb6ac116e18310fc383
-
SHA256
61fbe4b8e8a709e683785ed2aa7ac2c83bba53092cfed941b9c04ae0c0c6048d
-
SHA512
0984a0b5ab08a98923af75dc201df0623f1c3c96472c61eb5f26c11a8d8140aafe37a0795c4e11d887a2fa7b36b904ba865507ac02e23bae4d85ccc769a65ebc
-
SSDEEP
6144:k9qETTZ+4TBpvjLCousWZtPZvXEs5/ev6ZU2pvGOIxXdSK0G:/EnU4T/vjL8BXE2GCZzIdXoLG
Behavioral task
behavioral1
Sample
61fbe4b8e8a709e683785ed2aa7ac2c83bba53092cfed941b9c04ae0c0c6048d.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
61fbe4b8e8a709e683785ed2aa7ac2c83bba53092cfed941b9c04ae0c0c6048d.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
61fbe4b8e8a709e683785ed2aa7ac2c83bba53092cfed941b9c04ae0c0c6048d
-
Size
364KB
-
MD5
3dd1cf4790cd31af28bcff1aef503671
-
SHA1
c58fd96841c2eaf0ff07bcb6ac116e18310fc383
-
SHA256
61fbe4b8e8a709e683785ed2aa7ac2c83bba53092cfed941b9c04ae0c0c6048d
-
SHA512
0984a0b5ab08a98923af75dc201df0623f1c3c96472c61eb5f26c11a8d8140aafe37a0795c4e11d887a2fa7b36b904ba865507ac02e23bae4d85ccc769a65ebc
-
SSDEEP
6144:k9qETTZ+4TBpvjLCousWZtPZvXEs5/ev6ZU2pvGOIxXdSK0G:/EnU4T/vjL8BXE2GCZzIdXoLG
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-