General
-
Target
492e5a23998f53e0f635307a2bc9b3981be3f1a969fc3acc47e0ab05d588016b.exe
-
Size
1.3MB
-
Sample
241217-h3h2wstndt
-
MD5
be4333206553c8d6bd17d95de6d90636
-
SHA1
46e1c36bad423c260eba82c194700abff537b2f6
-
SHA256
492e5a23998f53e0f635307a2bc9b3981be3f1a969fc3acc47e0ab05d588016b
-
SHA512
592d3203ccf5908aa85e3247c1446000efbf569335dabaf3ee6294f335226fff71af39fd8ac03a695515047f82909cc0919c887b377c794555e5e86b9cfd33cc
-
SSDEEP
24576:RvY8cAmBVx6JciGN9wWPgZdL4me+vtNkYEQynSvnz5:RKtiGoWPgZaDYEnO5
Behavioral task
behavioral1
Sample
492e5a23998f53e0f635307a2bc9b3981be3f1a969fc3acc47e0ab05d588016b.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
492e5a23998f53e0f635307a2bc9b3981be3f1a969fc3acc47e0ab05d588016b.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
492e5a23998f53e0f635307a2bc9b3981be3f1a969fc3acc47e0ab05d588016b.exe
-
Size
1.3MB
-
MD5
be4333206553c8d6bd17d95de6d90636
-
SHA1
46e1c36bad423c260eba82c194700abff537b2f6
-
SHA256
492e5a23998f53e0f635307a2bc9b3981be3f1a969fc3acc47e0ab05d588016b
-
SHA512
592d3203ccf5908aa85e3247c1446000efbf569335dabaf3ee6294f335226fff71af39fd8ac03a695515047f82909cc0919c887b377c794555e5e86b9cfd33cc
-
SSDEEP
24576:RvY8cAmBVx6JciGN9wWPgZdL4me+vtNkYEQynSvnz5:RKtiGoWPgZaDYEnO5
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-