General
-
Target
1a02a03b4a270f7f906c17d7bc0708118c4dac03415d3d69288f66567f3baa39
-
Size
405KB
-
Sample
241030-y7n2ps1ape
-
MD5
7a00423c913f4e99dbf4223156a51675
-
SHA1
61925ce80700fdc6c2ffbab9ac1e9ab57c60c33f
-
SHA256
1a02a03b4a270f7f906c17d7bc0708118c4dac03415d3d69288f66567f3baa39
-
SHA512
4438a45864ba841115793b5f18a8b05a3e54f6b4f971c60dc10cebb95fc14b480d27e72fbf4877c37ac3165a733de138796e10d743222494b21310e434bd7110
-
SSDEEP
6144:k9Am+VNGMTOeVBUP59TKYfql67+ZIMQNnnirNXZXVf2:M+DGMTvBUP5DyI+ZI5nSNps
Behavioral task
behavioral1
Sample
1a02a03b4a270f7f906c17d7bc0708118c4dac03415d3d69288f66567f3baa39.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
1a02a03b4a270f7f906c17d7bc0708118c4dac03415d3d69288f66567f3baa39.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
1a02a03b4a270f7f906c17d7bc0708118c4dac03415d3d69288f66567f3baa39
-
Size
405KB
-
MD5
7a00423c913f4e99dbf4223156a51675
-
SHA1
61925ce80700fdc6c2ffbab9ac1e9ab57c60c33f
-
SHA256
1a02a03b4a270f7f906c17d7bc0708118c4dac03415d3d69288f66567f3baa39
-
SHA512
4438a45864ba841115793b5f18a8b05a3e54f6b4f971c60dc10cebb95fc14b480d27e72fbf4877c37ac3165a733de138796e10d743222494b21310e434bd7110
-
SSDEEP
6144:k9Am+VNGMTOeVBUP59TKYfql67+ZIMQNnnirNXZXVf2:M+DGMTvBUP5DyI+ZI5nSNps
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-