General
-
Target
638a310b8727e8df72bce96e1a21e5c7539054a1bdd345a7ec57c4f2536402eb
-
Size
138KB
-
Sample
221130-avy45sff5x
-
MD5
b7a8f850712ac72d4b1f35f510ecdf22
-
SHA1
c5991e5677379748e7da927ed293324a05898c17
-
SHA256
638a310b8727e8df72bce96e1a21e5c7539054a1bdd345a7ec57c4f2536402eb
-
SHA512
ccb1ec561a0c51c33b4c07e6128e4cc5088c268ef41a4130f2aa932e03707f9c594637c79a5b35e8fe0ec3a9b7b906783c6b51feb80e1082604ce05386452135
-
SSDEEP
1536:JxqjQ+P04wsmJCExgJpiqjvN3lKqO6rldVE2qwDjIGq51/d:sr85C/J8qjv7OYlJgz
Behavioral task
behavioral1
Sample
638a310b8727e8df72bce96e1a21e5c7539054a1bdd345a7ec57c4f2536402eb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
638a310b8727e8df72bce96e1a21e5c7539054a1bdd345a7ec57c4f2536402eb.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
638a310b8727e8df72bce96e1a21e5c7539054a1bdd345a7ec57c4f2536402eb
-
Size
138KB
-
MD5
b7a8f850712ac72d4b1f35f510ecdf22
-
SHA1
c5991e5677379748e7da927ed293324a05898c17
-
SHA256
638a310b8727e8df72bce96e1a21e5c7539054a1bdd345a7ec57c4f2536402eb
-
SHA512
ccb1ec561a0c51c33b4c07e6128e4cc5088c268ef41a4130f2aa932e03707f9c594637c79a5b35e8fe0ec3a9b7b906783c6b51feb80e1082604ce05386452135
-
SSDEEP
1536:JxqjQ+P04wsmJCExgJpiqjvN3lKqO6rldVE2qwDjIGq51/d:sr85C/J8qjv7OYlJgz
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-