General
-
Target
baf08d76af519046f8734d95193384ec401e7febde2be01e27da052165987140
-
Size
193KB
-
Sample
221202-hmbb4scg42
-
MD5
51a6c8bf71f6a9e9a03317e6e9e29972
-
SHA1
6c594f982d4e11ab78e65a3c1ede9b0095abcfa4
-
SHA256
baf08d76af519046f8734d95193384ec401e7febde2be01e27da052165987140
-
SHA512
6b8ccd8e3f17f060fd1b22f7a525a52525374bc227f807dcfcabe09d8e0357126dabffd98d54270ba57d23a582a13d17b5e818145f997ba4c3f5cc3b147b7cfd
-
SSDEEP
3072:sr85CNLSE8nxkYsugy6fq9O1xktzRmQpPhLSE8nxkYsugguiZZzRmQpPh:k9NLexk3qdhLYxk37iRdh
Behavioral task
behavioral1
Sample
baf08d76af519046f8734d95193384ec401e7febde2be01e27da052165987140.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
baf08d76af519046f8734d95193384ec401e7febde2be01e27da052165987140.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
baf08d76af519046f8734d95193384ec401e7febde2be01e27da052165987140
-
Size
193KB
-
MD5
51a6c8bf71f6a9e9a03317e6e9e29972
-
SHA1
6c594f982d4e11ab78e65a3c1ede9b0095abcfa4
-
SHA256
baf08d76af519046f8734d95193384ec401e7febde2be01e27da052165987140
-
SHA512
6b8ccd8e3f17f060fd1b22f7a525a52525374bc227f807dcfcabe09d8e0357126dabffd98d54270ba57d23a582a13d17b5e818145f997ba4c3f5cc3b147b7cfd
-
SSDEEP
3072:sr85CNLSE8nxkYsugy6fq9O1xktzRmQpPhLSE8nxkYsugguiZZzRmQpPh:k9NLexk3qdhLYxk37iRdh
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-