General
-
Target
b47cfa1f2525a07ec7ae1a2f2ee503d79a98c10ac9073f21a77b69c61c6ee35d
-
Size
136KB
-
Sample
221202-r127esga27
-
MD5
e36500eb48d92f2c551b1b869dbae15e
-
SHA1
bf21ca27cec9d269dbccfec527a3b8f568dc340f
-
SHA256
b47cfa1f2525a07ec7ae1a2f2ee503d79a98c10ac9073f21a77b69c61c6ee35d
-
SHA512
32cb8d76f6effec01ccf1cdb26e3e716e815e9b9ec871cacbaed5803fa58902ed4905c6ee9c74f24a69a4353548dadd69283ed241f41037f3e14b740c79b8a09
-
SSDEEP
3072:sr85CvKBoLDRgXTULa39yS1p8McOoLztRWR1a99hrQ:k9vyY27T8MOzqrw9m
Behavioral task
behavioral1
Sample
b47cfa1f2525a07ec7ae1a2f2ee503d79a98c10ac9073f21a77b69c61c6ee35d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b47cfa1f2525a07ec7ae1a2f2ee503d79a98c10ac9073f21a77b69c61c6ee35d.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
b47cfa1f2525a07ec7ae1a2f2ee503d79a98c10ac9073f21a77b69c61c6ee35d
-
Size
136KB
-
MD5
e36500eb48d92f2c551b1b869dbae15e
-
SHA1
bf21ca27cec9d269dbccfec527a3b8f568dc340f
-
SHA256
b47cfa1f2525a07ec7ae1a2f2ee503d79a98c10ac9073f21a77b69c61c6ee35d
-
SHA512
32cb8d76f6effec01ccf1cdb26e3e716e815e9b9ec871cacbaed5803fa58902ed4905c6ee9c74f24a69a4353548dadd69283ed241f41037f3e14b740c79b8a09
-
SSDEEP
3072:sr85CvKBoLDRgXTULa39yS1p8McOoLztRWR1a99hrQ:k9vyY27T8MOzqrw9m
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-