Nighttargz_JC[.]gz | Triage

Submit
Reports

Overview

overview

Static

static

sample.tar

windows7-x64

3

sample.tar

windows10-2004-x64

3

Night_uac/...in.ps1

windows7-x64

8

Night_uac/...in.ps1

windows10-2004-x64

8

Night_uac/...ge.ps1

windows7-x64

8

Night_uac/...ge.ps1

windows10-2004-x64

8

Night_uac/...gen.py

windows7-x64

3

Night_uac/...gen.py

windows10-2004-x64

3

Night_uac/amsi.ps1

windows7-x64

1

Night_uac/amsi.ps1

windows10-2004-x64

1

Night_uac/amsi.ps1

windows7-x64

1

Night_uac/amsi.ps1

windows10-2004-x64

1

Night_uac/command.ps1

windows7-x64

1

Night_uac/command.ps1

windows10-2004-x64

1

Night_uac/down.ps1

windows7-x64

8

Night_uac/down.ps1

windows10-2004-x64

8

Night_uac/...gp.ps1

windows7-x64

1

Night_uac/...gp.ps1

windows10-2004-x64

1

Night_uac/...58.ps1

windows7-x64

1

Night_uac/...58.ps1

windows10-2004-x64

1

Night_uac/...6n.ps1

windows7-x64

1

Night_uac/...6n.ps1

windows10-2004-x64

1

Night_uac/...ge.ps1

windows7-x64

1

Night_uac/...ge.ps1

windows10-2004-x64

1

Night_uac/...ej.ps1

windows7-x64

1

Night_uac/...ej.ps1

windows10-2004-x64

1

Night_uac/...41.ps1

windows7-x64

1

Night_uac/...41.ps1

windows10-2004-x64

1

Night_uac/...fn.ps1

windows7-x64

1

Night_uac/...fn.ps1

windows10-2004-x64

1

Night_uac/...all.sh

windows7-x64

3

Night_uac/...all.sh

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

sample.tar

Resource

win7-20230712-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

sample.tar

Resource

win10v2004-20230703-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

Night_uac/Uac_main.ps1

Resource

win7-20230712-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

Night_uac/Uac_main.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

Night_uac/Uac_stage.ps1

Resource

win7-20230712-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

Night_uac/Uac_stage.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral7

Sample

Night_uac/Uac_stage_gen.py

Resource

win7-20230712-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

Night_uac/Uac_stage_gen.py

Resource

win10v2004-20230703-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

Night_uac/amsi.ps1

Resource

win7-20230712-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

Night_uac/amsi.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Night_uac/amsi.ps1

Resource

win7-20230712-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral12

Sample

Night_uac/amsi.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral13

Sample

Night_uac/command.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

Night_uac/command.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

Night_uac/down.ps1

Resource

win7-20230712-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral16

Sample

Night_uac/down.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral17

Sample

Night_uac/payloads/0malm7gp.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

Night_uac/payloads/0malm7gp.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral19

Sample

Night_uac/payloads/264emg58.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

Night_uac/payloads/264emg58.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

Night_uac/payloads/7802ym6n.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral22

Sample

Night_uac/payloads/7802ym6n.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral23

Sample

Night_uac/payloads/9usd7yge.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

Night_uac/payloads/9usd7yge.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral25

Sample

Night_uac/payloads/fzrplyej.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

Night_uac/payloads/fzrplyej.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

Night_uac/payloads/jn2qnx41.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

Night_uac/payloads/jn2qnx41.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

Night_uac/payloads/qs14offn.ps1

Resource

win7-20230712-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

Night_uac/payloads/qs14offn.ps1

Resource

win10v2004-20230703-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

Night_uac/payloads/remove_all.sh

Resource

win7-20230712-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

Night_uac/payloads/remove_all.sh

Resource

win10v2004-20230703-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

Nighttargz_JC.gz
Size

5KB
MD5

e73e6c52fd1e3ae7fb1433fb84fc4b2c
SHA1

99b091887d65d2299a4af2997914163524d8ba45
SHA256

3557f225573a9827f24a1b83455bedc883a304b38d0376b6a553eee1bda7c863
SHA512

7caf90f49a67b1cac654fb333628bbbe9eb73ea519092dabbf1631f7428a0218461d19c24b0a41e50a8fc7fd1af03aa57ba8ee7f824cf4d79d6c93b735fd0d6d
SSDEEP

96:01Qu/JWUDP0NcQZOVgU8fmxKgIgtvQAmJrJb4YqcrZs4EDb2UF2X2iwNNH+:01Quhd0NbycmUgxt4HJrJHqmZZEPhDNI

Score

10^/10

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

ps1.dropper

http://54.208.157.120:80/Night_uac/amsi.ps1

ps1.dropper

http://54.208.157.120:80/Night_uac/uac.ps1

ps1.dropper

http://54.208.157.120:80/Night_uac/command.ps1

ps1.dropper

http://54.208.157.120:80/Night_uac/down.ps1

Extracted

Language

ps1

Source

URLs

exe.dropper

http://54.208.157.120:80/Night_uac/Uac_main.ps1

exe.dropper

http://54.208.157.120:80/Night_uac/payloads/9usd7yge.ps1

Extracted

Language

ps1

Deobfuscated

URLs

exe.dropper

http://54.208.157.120:80/winlogin.exe

Signatures

Files

Nighttargz_JC.gz
.gz
sample
.tar .ps1
Night_uac/Uac_main.ps1
Night_uac/Uac_stage.ps1
.ps1
Night_uac/Uac_stage_gen.py
.py .ps1
Night_uac/amsi.ps1
.ps1
Night_uac/amsi.ps1.bak
.ps1
Night_uac/command.ps1
Night_uac/down.ps1
.ps1
Night_uac/payloads/0malm7gp.ps1
Night_uac/payloads/264emg58.ps1
Night_uac/payloads/7802ym6n.ps1
Night_uac/payloads/9usd7yge.ps1
Night_uac/payloads/fzrplyej.ps1
Night_uac/payloads/jn2qnx41.ps1
Night_uac/payloads/qs14offn.ps1
Night_uac/payloads/remove_all.sh
Night_uac/payloads/t9r3mczo.ps1
Night_uac/payloads/v6vfu81h.ps1
Night_uac/uac.ps1
.ps1

© 2018-2025

Terms | Privacy