General
-
Target
5618dc48c1cc32e8450bc34fe82b5cda3b3141f87dc48f2ae19894b2f78f3d3b
-
Size
324KB
-
Sample
221202-r2y66abf9v
-
MD5
160db755d4a29ce692a241d911c5936a
-
SHA1
d955b84347c873d0686dd151bef0226e9c817559
-
SHA256
5618dc48c1cc32e8450bc34fe82b5cda3b3141f87dc48f2ae19894b2f78f3d3b
-
SHA512
797366386932943cc7c8af0871ec7bed945931f0f2d1a79b2db8a3bed7feb120e503669f772c710623c8af8f16645a31fe7a394f21873f6220fd9f51ecbcae9a
-
SSDEEP
6144:k9NoTdyHcW1WVe3KrkyO7feuJm3oDqb1f6ro+HqBEOljIkJeZdC7Ez:BTdyHcWuearkyO7feuJm4Of6rhqBdIku
Behavioral task
behavioral1
Sample
5618dc48c1cc32e8450bc34fe82b5cda3b3141f87dc48f2ae19894b2f78f3d3b.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
5618dc48c1cc32e8450bc34fe82b5cda3b3141f87dc48f2ae19894b2f78f3d3b.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
5618dc48c1cc32e8450bc34fe82b5cda3b3141f87dc48f2ae19894b2f78f3d3b
-
Size
324KB
-
MD5
160db755d4a29ce692a241d911c5936a
-
SHA1
d955b84347c873d0686dd151bef0226e9c817559
-
SHA256
5618dc48c1cc32e8450bc34fe82b5cda3b3141f87dc48f2ae19894b2f78f3d3b
-
SHA512
797366386932943cc7c8af0871ec7bed945931f0f2d1a79b2db8a3bed7feb120e503669f772c710623c8af8f16645a31fe7a394f21873f6220fd9f51ecbcae9a
-
SSDEEP
6144:k9NoTdyHcW1WVe3KrkyO7feuJm3oDqb1f6ro+HqBEOljIkJeZdC7Ez:BTdyHcWuearkyO7feuJm4Of6rhqBdIku
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-