a9dc5cc53fc53b3bd1d0a05fc0d39df2148c105ee84bdc3397d35858b37359bc | Triage

Submit
Reports

Overview

overview

8

Static

static

Ninite Chr...er.exe

windows7-x64

1

Ninite Chr...er.exe

windows10-2004-x64

8

Resubmissions

30/12/2022, 13:32

221230-qtbv8aff63 8

30/12/2022, 13:28

221230-qq4f3aah5v 8

Sharing

Copy URL Twitter E-mail

General

Target

Ninite Chrome Installer.exe
Size

415KB
Sample

221230-qtbv8aff63
MD5

8097773b2422511e27020f13285ba9ef
SHA1

7d14edc47d78d27d82896741ffb2b98014399eb1
SHA256

a9dc5cc53fc53b3bd1d0a05fc0d39df2148c105ee84bdc3397d35858b37359bc
SHA512

567e92afa8d58c6abdd14f6c179bca59bbf6160f8c9d386fd7375599f6719e2a155db0ffb6c380098582d97897d556633f951b8bc63e67da572371a6b6153113
SSDEEP

6144:uhuGbXZA2zNMPMPwVtiN44zAi5NAOig3TBrCZMszqLi7ksvmacmWnZ1e:SuypA2hESwGRwg3TBPi7BvmZmwZI

Score

8^/10

discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

Ninite Chrome Installer.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

Ninite Chrome Installer.exe

Resource

win10v2004-20221111-en

discovery persistence

windows10-2004-x64

22 signatures

120 seconds

Malware Config

Targets

- Target
  
  Ninite Chrome Installer.exe
- Size
  
  415KB
- MD5
  
  8097773b2422511e27020f13285ba9ef
- SHA1
  
  7d14edc47d78d27d82896741ffb2b98014399eb1
- SHA256
  
  a9dc5cc53fc53b3bd1d0a05fc0d39df2148c105ee84bdc3397d35858b37359bc
- SHA512
  
  567e92afa8d58c6abdd14f6c179bca59bbf6160f8c9d386fd7375599f6719e2a155db0ffb6c380098582d97897d556633f951b8bc63e67da572371a6b6153113
- SSDEEP
  
  6144:uhuGbXZA2zNMPMPwVtiN44zAi5NAOig3TBrCZMszqLi7ksvmacmWnZ1e:SuypA2hESwGRwg3TBPi7BvmZmwZI
Score

8^/10

discovery persistence
- Blocklisted process makes network request
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Registers COM server for autorun
  persistence
- Sets file execution options in registry
  persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence

© 2018-2025

Terms | Privacy