General
-
Target
1c54f349aaeae74b7f43ebf9d27a8d41a4eb884bc5760cfb8bb0dd9b69543f43
-
Size
141KB
-
Sample
240326-wlvw1sbc2w
-
MD5
d779fea2946e9e1caeb44ec108d56157
-
SHA1
8fbe91fc70c039a306e27ed04acc1c0a8bc9ad26
-
SHA256
1c54f349aaeae74b7f43ebf9d27a8d41a4eb884bc5760cfb8bb0dd9b69543f43
-
SHA512
f116c6e4023fd36a9e98e79f83c7ab327d70ac7ebd2ab360ae830bcdf0b22e85f2abdf59aeb4c6be1aae1f4298e5c16c307880c3758834b5c3d6289443cff789
-
SSDEEP
3072:sr85CAAVytTGUkO9w1ma8CXHaCbzrUPuTS8:k9bUeHVPpS8
Behavioral task
behavioral1
Sample
1c54f349aaeae74b7f43ebf9d27a8d41a4eb884bc5760cfb8bb0dd9b69543f43.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
1c54f349aaeae74b7f43ebf9d27a8d41a4eb884bc5760cfb8bb0dd9b69543f43.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
1c54f349aaeae74b7f43ebf9d27a8d41a4eb884bc5760cfb8bb0dd9b69543f43
-
Size
141KB
-
MD5
d779fea2946e9e1caeb44ec108d56157
-
SHA1
8fbe91fc70c039a306e27ed04acc1c0a8bc9ad26
-
SHA256
1c54f349aaeae74b7f43ebf9d27a8d41a4eb884bc5760cfb8bb0dd9b69543f43
-
SHA512
f116c6e4023fd36a9e98e79f83c7ab327d70ac7ebd2ab360ae830bcdf0b22e85f2abdf59aeb4c6be1aae1f4298e5c16c307880c3758834b5c3d6289443cff789
-
SSDEEP
3072:sr85CAAVytTGUkO9w1ma8CXHaCbzrUPuTS8:k9bUeHVPpS8
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
RevengeRat Executable
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-