General
-
Target
89d2ee043d918f772de1e8c3cd1af5bb8f300fe141f1458ff6062461236aad37
-
Size
3.0MB
-
Sample
240616-3km84stdrg
-
MD5
325817d624a46145cdcc65597d7fd9b9
-
SHA1
1393025d9d5e88d4e8f6211689cc8b773acc279c
-
SHA256
89d2ee043d918f772de1e8c3cd1af5bb8f300fe141f1458ff6062461236aad37
-
SHA512
955e7fef25e8ff28b70941dea16463359225c16a1c553d95c22d48ab8b3afe40931f10109d0aa207a92b9772b434411ecbe74053c1a66c83eb09ba751f6c30bb
-
SSDEEP
49152:/e4wPw0weqQOk1+vtqqxKyLCjJAJx2g+eu+TxFx4yM8OlqYwD4:/LhPxxD4
Behavioral task
behavioral1
Sample
89d2ee043d918f772de1e8c3cd1af5bb8f300fe141f1458ff6062461236aad37.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
89d2ee043d918f772de1e8c3cd1af5bb8f300fe141f1458ff6062461236aad37.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
89d2ee043d918f772de1e8c3cd1af5bb8f300fe141f1458ff6062461236aad37
-
Size
3.0MB
-
MD5
325817d624a46145cdcc65597d7fd9b9
-
SHA1
1393025d9d5e88d4e8f6211689cc8b773acc279c
-
SHA256
89d2ee043d918f772de1e8c3cd1af5bb8f300fe141f1458ff6062461236aad37
-
SHA512
955e7fef25e8ff28b70941dea16463359225c16a1c553d95c22d48ab8b3afe40931f10109d0aa207a92b9772b434411ecbe74053c1a66c83eb09ba751f6c30bb
-
SSDEEP
49152:/e4wPw0weqQOk1+vtqqxKyLCjJAJx2g+eu+TxFx4yM8OlqYwD4:/LhPxxD4
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-