General
-
Target
5d348c22a66112ba3ac1ecf20bc5d19dee513589e309aedf4527e54739ad77c6
-
Size
196KB
-
Sample
221130-av19haff51
-
MD5
507e7d0980fa9477461fcdd05b27523a
-
SHA1
eab3f03c0933445350cf06b88a9c5fe963efc02d
-
SHA256
5d348c22a66112ba3ac1ecf20bc5d19dee513589e309aedf4527e54739ad77c6
-
SHA512
8f0c4f379e89d1109ecb331a3c162fc95d63c57c77488d7713f6222fc281be048c1ae176110a4a156118c6f9b2cb01d61d6c5d62f3b0098704cccfa252b82ce4
-
SSDEEP
3072:kr85CohfESSXeO/9wxSqNotUktw4Fn1BhBWg3KxU:c9s7VlSqN2tdN17B3
Static task
static1
Behavioral task
behavioral1
Sample
5d348c22a66112ba3ac1ecf20bc5d19dee513589e309aedf4527e54739ad77c6.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5d348c22a66112ba3ac1ecf20bc5d19dee513589e309aedf4527e54739ad77c6.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
5d348c22a66112ba3ac1ecf20bc5d19dee513589e309aedf4527e54739ad77c6
-
Size
196KB
-
MD5
507e7d0980fa9477461fcdd05b27523a
-
SHA1
eab3f03c0933445350cf06b88a9c5fe963efc02d
-
SHA256
5d348c22a66112ba3ac1ecf20bc5d19dee513589e309aedf4527e54739ad77c6
-
SHA512
8f0c4f379e89d1109ecb331a3c162fc95d63c57c77488d7713f6222fc281be048c1ae176110a4a156118c6f9b2cb01d61d6c5d62f3b0098704cccfa252b82ce4
-
SSDEEP
3072:kr85CohfESSXeO/9wxSqNotUktw4Fn1BhBWg3KxU:c9s7VlSqN2tdN17B3
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-