General
-
Target
101d48ca1c0c0286cd301e7dc16c2b80N.exe
-
Size
1.6MB
-
Sample
240724-z7jyesxfpq
-
MD5
101d48ca1c0c0286cd301e7dc16c2b80
-
SHA1
4c86eb1efa2b17643a77c455683d6e90a81f95a3
-
SHA256
efc0b6f716786a6e695aa513d069bf80cb7261cd3216bc7a66d95ab88ec1f127
-
SHA512
bc03250062f91056973f4f47b9c9e53e96e0d2a0792be645f8f2c33a54d4152ec6fbed070735f4e49c5d168ffab6e05515903207e719523dae028826266a1aa7
-
SSDEEP
24576:E+cjMT7DznQCh2FrhNrTPGYws6CVBcWr0/HKmWQO8KYMS1/g1GKK:7cjaOdNrTPGYws3zrsKmW/86Z1K
Behavioral task
behavioral1
Sample
101d48ca1c0c0286cd301e7dc16c2b80N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
101d48ca1c0c0286cd301e7dc16c2b80N.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
101d48ca1c0c0286cd301e7dc16c2b80N.exe
-
Size
1.6MB
-
MD5
101d48ca1c0c0286cd301e7dc16c2b80
-
SHA1
4c86eb1efa2b17643a77c455683d6e90a81f95a3
-
SHA256
efc0b6f716786a6e695aa513d069bf80cb7261cd3216bc7a66d95ab88ec1f127
-
SHA512
bc03250062f91056973f4f47b9c9e53e96e0d2a0792be645f8f2c33a54d4152ec6fbed070735f4e49c5d168ffab6e05515903207e719523dae028826266a1aa7
-
SSDEEP
24576:E+cjMT7DznQCh2FrhNrTPGYws6CVBcWr0/HKmWQO8KYMS1/g1GKK:7cjaOdNrTPGYws3zrsKmW/86Z1K
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-