General
-
Target
bafcc6ae8ea3ff90bc6faa53369e4677780890cbfb6e6a8582921e855ee7a566
-
Size
1.0MB
-
Sample
240419-cqj6jaea34
-
MD5
b47ee9163912ebe95ce9c13f08a5b9ae
-
SHA1
e59ec30c2f53a48ab75c6af0bbbeb7d66940374a
-
SHA256
bafcc6ae8ea3ff90bc6faa53369e4677780890cbfb6e6a8582921e855ee7a566
-
SHA512
fcedae8efd2e1fedd0c7491d3b749a852332a76243957d503526f51ef4d0c10adb3ec94aeaf452836e958e6a9c642066007b070c4f594f44c541eb09a4ffddc3
-
SSDEEP
24576:I4394Ezbn4394Ezb/soUrXxmR4394Ezb:I4394Evn4394Ev/soCO4394Ev
Behavioral task
behavioral1
Sample
bafcc6ae8ea3ff90bc6faa53369e4677780890cbfb6e6a8582921e855ee7a566.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
bafcc6ae8ea3ff90bc6faa53369e4677780890cbfb6e6a8582921e855ee7a566.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
bafcc6ae8ea3ff90bc6faa53369e4677780890cbfb6e6a8582921e855ee7a566
-
Size
1.0MB
-
MD5
b47ee9163912ebe95ce9c13f08a5b9ae
-
SHA1
e59ec30c2f53a48ab75c6af0bbbeb7d66940374a
-
SHA256
bafcc6ae8ea3ff90bc6faa53369e4677780890cbfb6e6a8582921e855ee7a566
-
SHA512
fcedae8efd2e1fedd0c7491d3b749a852332a76243957d503526f51ef4d0c10adb3ec94aeaf452836e958e6a9c642066007b070c4f594f44c541eb09a4ffddc3
-
SSDEEP
24576:I4394Ezbn4394Ezb/soUrXxmR4394Ezb:I4394Evn4394Ev/soCO4394Ev
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-