nosu | 33dcc2a99951f4b1530bed30914c2e796290cf22cd40593e4691e14ea6577396

Analysis

max time kernel
146s
max time network
155s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
29/03/2023, 10:40

Target

33dcc2a99951f4b1530bed30914c2e796290cf22cd40593e4691e14ea6577396.exe
Size

734KB
MD5

f40812052d12f59ddd8a3a74c79565aa
SHA1

3c4227135e5f9883407c87aabf8d473b3a54451e
SHA256

33dcc2a99951f4b1530bed30914c2e796290cf22cd40593e4691e14ea6577396
SHA512

1c0b80f13f20d3d6a3e85a1f0438a117bc6df174a3eadd8a7a7fe11a2f8cb353a00125423e5a302584288508adb5fd4208cc7732b560707f605388f7685c31e8
SSDEEP

12288:zPDiJJG05qrVujzjkv45nG2JoGhkgGt4z9bqCb4jyKrxo6EbpYx0:rmb3GVsfkv4I2Wi0t4V4jPG6Eb

Score

10^/10

nosu stealer

Nosu
Nosu is an info stealer written in C++ first seen in late 2022.
stealer nosu

C:\Users\Admin\AppData\Local\Temp\33dcc2a99951f4b1530bed30914c2e796290cf22cd40593e4691e14ea6577396.exe
"C:\Users\Admin\AppData\Local\Temp\33dcc2a99951f4b1530bed30914c2e796290cf22cd40593e4691e14ea6577396.exe"
1⤵
PID:2000

memory/2000-121-0x0000000000570000-0x0000000000571000-memory.dmp

Filesize
4KB

Download
memory/2000-122-0x00000000028F0000-0x0000000002939000-memory.dmp

Filesize
292KB

Download
memory/2000-123-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download
memory/2000-124-0x0000000000570000-0x0000000000571000-memory.dmp

Filesize
4KB

Download
memory/2000-125-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download
memory/2000-126-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download
memory/2000-127-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download
memory/2000-128-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download
memory/2000-129-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download
memory/2000-130-0x0000000000400000-0x00000000004BD000-memory.dmp

Filesize
756KB

Download