General
-
Target
fbda7707e5ed5ac46fc3a452edae9ad0850966f3afa8efe559e042ee5ef79820
-
Size
276KB
-
Sample
240414-dz113sdh45
-
MD5
61649dcec9259f42c397995093d8b72c
-
SHA1
abf99f636357514e678641f76ad6396fb8224daa
-
SHA256
fbda7707e5ed5ac46fc3a452edae9ad0850966f3afa8efe559e042ee5ef79820
-
SHA512
571bc8faa4f9de8293b706257c7ae9460f0fa8d282a71d147a0943004b246d9396b7519afc4d0a83a91f805a11373e42b30fba5525b2c60ee51cc32dd6d6ad50
-
SSDEEP
6144:k942eK7mnoUSgpAY8ODcDcm7cIskt44F0T6mkk9ABAO2VaexUMRsFSfPjqZp57cs:kt44F+L9wzeHySfPjqjT
Behavioral task
behavioral1
Sample
fbda7707e5ed5ac46fc3a452edae9ad0850966f3afa8efe559e042ee5ef79820.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
fbda7707e5ed5ac46fc3a452edae9ad0850966f3afa8efe559e042ee5ef79820.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
fbda7707e5ed5ac46fc3a452edae9ad0850966f3afa8efe559e042ee5ef79820
-
Size
276KB
-
MD5
61649dcec9259f42c397995093d8b72c
-
SHA1
abf99f636357514e678641f76ad6396fb8224daa
-
SHA256
fbda7707e5ed5ac46fc3a452edae9ad0850966f3afa8efe559e042ee5ef79820
-
SHA512
571bc8faa4f9de8293b706257c7ae9460f0fa8d282a71d147a0943004b246d9396b7519afc4d0a83a91f805a11373e42b30fba5525b2c60ee51cc32dd6d6ad50
-
SSDEEP
6144:k942eK7mnoUSgpAY8ODcDcm7cIskt44F0T6mkk9ABAO2VaexUMRsFSfPjqZp57cs:kt44F+L9wzeHySfPjqjT
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-