Overview

overview

7

Static

static

3

nimrod3k_beta.exe

windows7-x64

7

nimrod3k_beta.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    nimrod3k_beta.exe

  • Size

    113.7MB

  • Sample

    230205-mxbsvacd9t

  • MD5

    3ad89fefa1ad157633127240c3391ea0

  • SHA1

    a782cd2f64d83a427a1f3518ccf0ecb318dc1494

  • SHA256

    e3b0ab45f40a99bcfec631868debf25f8736fe7409579fc53ecad859571ac721

  • SHA512

    1daacfcfc7d93d7fc9c730abc7bd6220f3585502af74add7f32713bda4f199666f2705ead4efb63b686cbce5ed5b65223b013c26930c678b5c128756b1842f52

  • SSDEEP

    3145728:/F7V7SC++pLwANp7y4NT/LjBCVpOmo8sLOEc+:pVWCXPjrBc0mMOE

Score
7/10
pyinstaller

Malware Config

Targets

    • Target

      nimrod3k_beta.exe

    • Size

      113.7MB

    • MD5

      3ad89fefa1ad157633127240c3391ea0

    • SHA1

      a782cd2f64d83a427a1f3518ccf0ecb318dc1494

    • SHA256

      e3b0ab45f40a99bcfec631868debf25f8736fe7409579fc53ecad859571ac721

    • SHA512

      1daacfcfc7d93d7fc9c730abc7bd6220f3585502af74add7f32713bda4f199666f2705ead4efb63b686cbce5ed5b65223b013c26930c678b5c128756b1842f52

    • SSDEEP

      3145728:/F7V7SC++pLwANp7y4NT/LjBCVpOmo8sLOEc+:pVWCXPjrBc0mMOE

    Score
    7/10

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks