General
-
Target
fafedbde7281680a3dd160e4c14a28d33b1f5ab9e67b35c7ec3465b0672e4a4c.exe
-
Size
3.3MB
-
Sample
241219-hdr89ssqbx
-
MD5
65dc53d9977a4a19aab4e222380dd7cb
-
SHA1
b07f2d83ec1800a3f35e0558215d383b4c4c7520
-
SHA256
fafedbde7281680a3dd160e4c14a28d33b1f5ab9e67b35c7ec3465b0672e4a4c
-
SHA512
f41498f7e2ec5d9a064cf0bb00367ee0dbb02adbc2bc59c0d6c05184125175bed8309794b46cda6b0b2d7fa72ff03743ee1ec4667cff556ba430c25618a0ab8a
-
SSDEEP
49152:HBoNKp2QeOZULCTMS16f2C7A7db1FfKSPAohpT1QUD3qjPBNC:HBo4NILCVofx7AE3ohh
Behavioral task
behavioral1
Sample
fafedbde7281680a3dd160e4c14a28d33b1f5ab9e67b35c7ec3465b0672e4a4c.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
fafedbde7281680a3dd160e4c14a28d33b1f5ab9e67b35c7ec3465b0672e4a4c.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
fafedbde7281680a3dd160e4c14a28d33b1f5ab9e67b35c7ec3465b0672e4a4c.exe
-
Size
3.3MB
-
MD5
65dc53d9977a4a19aab4e222380dd7cb
-
SHA1
b07f2d83ec1800a3f35e0558215d383b4c4c7520
-
SHA256
fafedbde7281680a3dd160e4c14a28d33b1f5ab9e67b35c7ec3465b0672e4a4c
-
SHA512
f41498f7e2ec5d9a064cf0bb00367ee0dbb02adbc2bc59c0d6c05184125175bed8309794b46cda6b0b2d7fa72ff03743ee1ec4667cff556ba430c25618a0ab8a
-
SSDEEP
49152:HBoNKp2QeOZULCTMS16f2C7A7db1FfKSPAohpT1QUD3qjPBNC:HBo4NILCVofx7AE3ohh
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-