General
-
Target
bbd11c58a2b7e27353a7363bc1108e6f1f6c3383cacedf332c10fb66bb970ca8
-
Size
470KB
-
Sample
221202-hlkjdscf69
-
MD5
836a04ec9312fd5b4690eaa3ba25a610
-
SHA1
0f4bd267cff939690ffceac440fb4418e2661201
-
SHA256
bbd11c58a2b7e27353a7363bc1108e6f1f6c3383cacedf332c10fb66bb970ca8
-
SHA512
7969c32c7d5d1de9895366dadbcb95fe5fc3da5730ee70c7eb6d95bfa17b81cb62bd34a63b30985b515fe1f5782fe73ae2114031c4b2be66dbc809b0240cfb6b
-
SSDEEP
6144:PuHeSq9d4RgqM0hK+FOivEYmvL5OtcG3+ttYXhoCJSiaFfmoqh2gbl5+PycUF:EeSF+qMUQQEP5gc9v0o6S5Q55GcF
Static task
static1
Behavioral task
behavioral1
Sample
bbd11c58a2b7e27353a7363bc1108e6f1f6c3383cacedf332c10fb66bb970ca8.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
bbd11c58a2b7e27353a7363bc1108e6f1f6c3383cacedf332c10fb66bb970ca8.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
bbd11c58a2b7e27353a7363bc1108e6f1f6c3383cacedf332c10fb66bb970ca8
-
Size
470KB
-
MD5
836a04ec9312fd5b4690eaa3ba25a610
-
SHA1
0f4bd267cff939690ffceac440fb4418e2661201
-
SHA256
bbd11c58a2b7e27353a7363bc1108e6f1f6c3383cacedf332c10fb66bb970ca8
-
SHA512
7969c32c7d5d1de9895366dadbcb95fe5fc3da5730ee70c7eb6d95bfa17b81cb62bd34a63b30985b515fe1f5782fe73ae2114031c4b2be66dbc809b0240cfb6b
-
SSDEEP
6144:PuHeSq9d4RgqM0hK+FOivEYmvL5OtcG3+ttYXhoCJSiaFfmoqh2gbl5+PycUF:EeSF+qMUQQEP5gc9v0o6S5Q55GcF
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-