General
-
Target
3cd17165afef7bc37fbed16744766fa85cf63aa8d8e85f7d9977c82f5359b343
-
Size
141KB
-
Sample
240418-zp6pgaef46
-
MD5
be83415923b898d5f868e1a1188cf034
-
SHA1
9406f93776ba8121933ed81c981689232132897c
-
SHA256
3cd17165afef7bc37fbed16744766fa85cf63aa8d8e85f7d9977c82f5359b343
-
SHA512
3d088600f4ef4389d13decb6c919932092bd70456f2da8f8cf948cdfc7dc0286801a608e19915f0db70b80bc3c122cf24f8a98f406ee128a3b0d7446d2a171a5
-
SSDEEP
3072:zr8WDrCkRD5b+AZ7y4jem7y6tqNRCywDw1DiJkuKUY:PuGD5lZ7y4j9cT4DteUY
Static task
static1
Behavioral task
behavioral1
Sample
3cd17165afef7bc37fbed16744766fa85cf63aa8d8e85f7d9977c82f5359b343.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
3cd17165afef7bc37fbed16744766fa85cf63aa8d8e85f7d9977c82f5359b343.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
3cd17165afef7bc37fbed16744766fa85cf63aa8d8e85f7d9977c82f5359b343
-
Size
141KB
-
MD5
be83415923b898d5f868e1a1188cf034
-
SHA1
9406f93776ba8121933ed81c981689232132897c
-
SHA256
3cd17165afef7bc37fbed16744766fa85cf63aa8d8e85f7d9977c82f5359b343
-
SHA512
3d088600f4ef4389d13decb6c919932092bd70456f2da8f8cf948cdfc7dc0286801a608e19915f0db70b80bc3c122cf24f8a98f406ee128a3b0d7446d2a171a5
-
SSDEEP
3072:zr8WDrCkRD5b+AZ7y4jem7y6tqNRCywDw1DiJkuKUY:PuGD5lZ7y4j9cT4DteUY
Score10/10-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-