General
-
Target
b26000731710b91b020a96c2c834e609f3f74d1b4c879964e1962c69975e3fbf
-
Size
154KB
-
Sample
221202-r16vlsbf3w
-
MD5
f53d031893900a221a023dcecf635c5e
-
SHA1
46301cd53556d3348221fccd536cbfddbeb0317f
-
SHA256
b26000731710b91b020a96c2c834e609f3f74d1b4c879964e1962c69975e3fbf
-
SHA512
b4a64cb0eb75060510408d1b024af865c498cb3c799d8343917b554048f4791653a7a6fe3c2dc0c44fd27d2deb6437f40d63576daf200e33097a2085c3fd836c
-
SSDEEP
3072:sr8JCtz5RI+FlB6MfXhaYf+YC/A114IV71h7rNIVCTXA3eZIkesJPPqb5g+VTjKD:ktxI+TLbx
Behavioral task
behavioral1
Sample
b26000731710b91b020a96c2c834e609f3f74d1b4c879964e1962c69975e3fbf.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
b26000731710b91b020a96c2c834e609f3f74d1b4c879964e1962c69975e3fbf.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
b26000731710b91b020a96c2c834e609f3f74d1b4c879964e1962c69975e3fbf
-
Size
154KB
-
MD5
f53d031893900a221a023dcecf635c5e
-
SHA1
46301cd53556d3348221fccd536cbfddbeb0317f
-
SHA256
b26000731710b91b020a96c2c834e609f3f74d1b4c879964e1962c69975e3fbf
-
SHA512
b4a64cb0eb75060510408d1b024af865c498cb3c799d8343917b554048f4791653a7a6fe3c2dc0c44fd27d2deb6437f40d63576daf200e33097a2085c3fd836c
-
SSDEEP
3072:sr8JCtz5RI+FlB6MfXhaYf+YC/A114IV71h7rNIVCTXA3eZIkesJPPqb5g+VTjKD:ktxI+TLbx
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-