General
-
Target
7ebc8f5c56e4031f5edbafe44f3f100fe02530cc14df238f4257be8ce2cf731d
-
Size
552KB
-
Sample
240424-3ngkqsbg3w
-
MD5
228830a402fe6af804baf7d2403db4ea
-
SHA1
7508693306fae7792bc35c05261f25aeaa324c8b
-
SHA256
7ebc8f5c56e4031f5edbafe44f3f100fe02530cc14df238f4257be8ce2cf731d
-
SHA512
718759fbd033b9857e86b00e0dd3a76d861af5cf0d18535b27a0ae55efe62916c25df9181938ab65ea076dfdc06d13d99dcc3293479a3aff09b389631e0d6419
-
SSDEEP
12288:V405IhdgaPJ/YiNAq7oF2BJE3wT7tHY0VYe1r92:V405il7WIE3wWAYgrA
Behavioral task
behavioral1
Sample
7ebc8f5c56e4031f5edbafe44f3f100fe02530cc14df238f4257be8ce2cf731d.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
7ebc8f5c56e4031f5edbafe44f3f100fe02530cc14df238f4257be8ce2cf731d.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
7ebc8f5c56e4031f5edbafe44f3f100fe02530cc14df238f4257be8ce2cf731d
-
Size
552KB
-
MD5
228830a402fe6af804baf7d2403db4ea
-
SHA1
7508693306fae7792bc35c05261f25aeaa324c8b
-
SHA256
7ebc8f5c56e4031f5edbafe44f3f100fe02530cc14df238f4257be8ce2cf731d
-
SHA512
718759fbd033b9857e86b00e0dd3a76d861af5cf0d18535b27a0ae55efe62916c25df9181938ab65ea076dfdc06d13d99dcc3293479a3aff09b389631e0d6419
-
SSDEEP
12288:V405IhdgaPJ/YiNAq7oF2BJE3wT7tHY0VYe1r92:V405il7WIE3wWAYgrA
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-