Analysis
-
max time kernel
821s -
max time network
1169s -
platform
windows11-21h2_x64 -
resource
win11-20231222-en -
resource tags
-
submitted
30-01-2024 16:10
General
-
Target
Nighty2.2 (1).zip
-
Size
113.6MB
-
MD5
b5ee3302c0fa28873d8229ae7e9d732e
-
SHA1
9682580566a355e5ff8e50f8d8fc8ead3aa5fdee
-
SHA256
b92c73fd80d0356057d3b279d18e2ef7097eae67d0bf0ee03478f0bb19bef23c
-
SHA512
f12ac2b410f5bd9e950dd677c90802bd9be7971fe51858c08ef48db1bf99d356bddc4e1a6a44d1e55c8b4385971b184bb48c91509aa9c7035b84e82416060d16
-
SSDEEP
3145728:hBTeHerRbPV2utsNeBUZ0bPO4eTgd5OAvi5pKxjkuAPKKFD2rI:hIe9bSwu6bPggaAvCpKmVth
Malware Config
Signatures
-
Modifies registry class 1 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Windows\Explorer.exeC:\Windows\Explorer.exe /idlist,,"C:\Users\Admin\AppData\Local\Temp\Nighty2.2 (1).zip"1⤵
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵
-
C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
10KB
MD5d46cf67c7632a83da991c4ed89438575
SHA133880a2855647bf8bba89b7ffa825eca10811685
SHA256647b707513b448a4dce0355ed4623142a45c92b15e8c6d982c045655dbcd56ca
SHA51236c1140968a05bc2d99cb31e254b468e7a1c65ecc70e7561c4159582b19dcf8fc3a5e5cdab8f3181184d1640056a8220bfe5f631f83a1d2ffcfabb992c878c82
-
Filesize
10KB
MD51be149be30257b9798e9e8b2a05f74b5
SHA1d1c17184a00c1342bafb4c567b54a51d8b4ad927
SHA256829251552b8674a9e3c4dc92fac68b9b714e0d8d55f888b60c0606c27a0fa9cb
SHA512e842d8dfa0fc28a6cb2c10ee7a6d6aa6446cd7608712146db7102dd446806697a53db7a085a10176ed28ddbbe7b6bac767a75a27971d29233c7fc380b81b1999