General
-
Target
a4f2b9bc041d8119ef1dfcfe0a5328d35ce05b0900bff6ee73aa2121a749f0ab
-
Size
2.1MB
-
Sample
240429-a2pjaade4x
-
MD5
33fa3379e8a1867e7bc9839a0c148376
-
SHA1
e90f9eb0b49407926a48e22661baba13277b0e5c
-
SHA256
a4f2b9bc041d8119ef1dfcfe0a5328d35ce05b0900bff6ee73aa2121a749f0ab
-
SHA512
06b9a99f751f2ab6460aff5a19bc7d42c619c53f64ec940cffa4e5a7abbe9217cd4edff3d377b23986158796604b5afb3b4e5c1b81031570811839ded98b82cb
-
SSDEEP
49152:6Pu9vLXK32thBVtTtD7M+9EsNaK7ecFuCKg:6uj7tLz39E4juNg
Behavioral task
behavioral1
Sample
a4f2b9bc041d8119ef1dfcfe0a5328d35ce05b0900bff6ee73aa2121a749f0ab.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
a4f2b9bc041d8119ef1dfcfe0a5328d35ce05b0900bff6ee73aa2121a749f0ab.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
a4f2b9bc041d8119ef1dfcfe0a5328d35ce05b0900bff6ee73aa2121a749f0ab
-
Size
2.1MB
-
MD5
33fa3379e8a1867e7bc9839a0c148376
-
SHA1
e90f9eb0b49407926a48e22661baba13277b0e5c
-
SHA256
a4f2b9bc041d8119ef1dfcfe0a5328d35ce05b0900bff6ee73aa2121a749f0ab
-
SHA512
06b9a99f751f2ab6460aff5a19bc7d42c619c53f64ec940cffa4e5a7abbe9217cd4edff3d377b23986158796604b5afb3b4e5c1b81031570811839ded98b82cb
-
SSDEEP
49152:6Pu9vLXK32thBVtTtD7M+9EsNaK7ecFuCKg:6uj7tLz39E4juNg
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-