f16a87e183bfe34afc75098a027d9397bf97a8fd2d289abe723d628072602b3c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Discord_Ni...or.exe

windows7-x64

7

Discord_Ni...or.exe

windows10-2004-x64

7

Sharing

General

Target

Discord_Nitro_Generator.exe
Size

10.3MB
Sample

230526-3vfxsaaa8x
MD5

deb8e6b240f3fe4f14717f270bc7d72b
SHA1

454d0cc939a7c45fcd38f2a10a6fe025d8c2a1ba
SHA256

f16a87e183bfe34afc75098a027d9397bf97a8fd2d289abe723d628072602b3c
SHA512

cd3da01d3305e722cec703e4e7a5581ca1e73a6f8a6133ed0fb8e4a2a8c619dd719ce390f8fce142b1a06171f9576d679c80b19b099e306d2ea2a69a9aee6b83
SSDEEP

196608:SDf+GIzme9onJ5hrZERlyiU8AdZYJERS48RmU/3ZlsPvarTsZg8CNhHSzCqblZou:JPzJ9c5hlERJAdZYygtN3ZWarQcHSl6

Score

7^/10

pyinstaller

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Discord_Nitro_Generator.exe

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Discord_Nitro_Generator.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  Discord_Nitro_Generator.exe
- Size
  
  10.3MB
- MD5
  
  deb8e6b240f3fe4f14717f270bc7d72b
- SHA1
  
  454d0cc939a7c45fcd38f2a10a6fe025d8c2a1ba
- SHA256
  
  f16a87e183bfe34afc75098a027d9397bf97a8fd2d289abe723d628072602b3c
- SHA512
  
  cd3da01d3305e722cec703e4e7a5581ca1e73a6f8a6133ed0fb8e4a2a8c619dd719ce390f8fce142b1a06171f9576d679c80b19b099e306d2ea2a69a9aee6b83
- SSDEEP
  
  196608:SDf+GIzme9onJ5hrZERlyiU8AdZYJERS48RmU/3ZlsPvarTsZg8CNhHSzCqblZou:JPzJ9c5hlERJAdZYygtN3ZWarQcHSl6
Score

7^/10
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy