Overview

overview

3

Static

static

3

Nigthmare ...ER.exe

windows7-x64

1

Nigthmare ...ER.exe

windows10-2004-x64

1

Nigthmare ...ub.exe

windows7-x64

1

Nigthmare ...ub.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Nigthmare CrypteR by sky-life/stub.exe

  • Size

    60KB

  • MD5

    113df4692e2daa8346065d4775afd0c9

  • SHA1

    443ebcf9c5d3c260e60535b38b13ca3e7d24f456

  • SHA256

    375a79c88fb32fcc5908e7effa766dcb339dfbed927df9a82bdf619d21b10375

  • SHA512

    c03e65168e17bb1e5e8746be6da466ebc2ea36617f71e9ca3112d6d6aa5389d1f9144c6f5e4890299288495f8c091343c684d4e4473e615011090942b02e6eef

  • SSDEEP

    768:UdrtP218uT8+OVY9IUzpBPdirniCQ7VC6DHAw/jdABDo1LccJBwR:Ui18W3IYFzHdanjQ7VZDgw/E+vLk

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Nigthmare CrypteR by sky-life\stub.exe
    "C:\Users\Admin\AppData\Local\Temp\Nigthmare CrypteR by sky-life\stub.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3012

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3012-0-0x0000000000400000-0x0000000000410000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3012-3-0x0000000000400000-0x0000000000410000-memory.dmp

          Filesize

          64KB

          Download