Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NightyGo.rar

  • Size

    5.8MB

  • Sample

    240704-p69scazake

  • MD5

    94b834ad8a680aef58980761c09e53ee

  • SHA1

    2709a20f0083083546e33988b83bba4ccadd2380

  • SHA256

    72d72607279e1add253c86dc2e664027dd1f495fbef456cb7415ef36dcf3901a

  • SHA512

    f9cf3d2162c5b94ec0d539ddc6ffea7d99add0a06bfe5bb0d3a6ca0badedd3ffc0812db6ab696cc4c7158252240004cc26805e7d9ec245ae7cba149e5b91956f

  • SSDEEP

    98304:gFYRNc1oTXDTO2ESe5DJ2VeaKYS+YM92H7BeqWnO8nixTK+CNJdZEkb9:NDc1QTT+pv2V2D+YE2H7MqW70TK++ZE4

Score
6/10

Malware Config

Targets

    • Target

      NightyGo.rar

    • Size

      5.8MB

    • MD5

      94b834ad8a680aef58980761c09e53ee

    • SHA1

      2709a20f0083083546e33988b83bba4ccadd2380

    • SHA256

      72d72607279e1add253c86dc2e664027dd1f495fbef456cb7415ef36dcf3901a

    • SHA512

      f9cf3d2162c5b94ec0d539ddc6ffea7d99add0a06bfe5bb0d3a6ca0badedd3ffc0812db6ab696cc4c7158252240004cc26805e7d9ec245ae7cba149e5b91956f

    • SSDEEP

      98304:gFYRNc1oTXDTO2ESe5DJ2VeaKYS+YM92H7BeqWnO8nixTK+CNJdZEkb9:NDc1QTT+pv2V2D+YE2H7MqW70TK++ZE4

    Score
    3/10
    • Target

      NightyGo/NightyGo.exe

    • Size

      12.7MB

    • MD5

      1e19d9cab79ab2f7089e9b35c09c5de6

    • SHA1

      dc8f115c2f077f2626f483a757d664b4a903af4a

    • SHA256

      87defc7dde33f78c15ee397d1aaef962eaeb21236ebc5ef749a49904df0bd22d

    • SHA512

      0dc41e4da2546fee7bd72982f6f514a44df2c47f4a0a40c0c18fd8d117600e3ed27b2972dacc3fb91c5211c7c7194427e9b19b3404cbfdfbe83342aa4dcb14a9

    • SSDEEP

      196608:JcW9JRgNUMuhqtHv0Jrhn/l9Xm64wHGxoqXFCtoOUdN0nl:h9xW1WFnDMxoqwtoOSen

    Score
    1/10
    • Target

      NightyGo/config.json

    • Size

      278B

    • MD5

      32dd2cf69aa5e24eb3287fd13c38c195

    • SHA1

      7c2682d984f4211c5a2a082c156cee84542a3696

    • SHA256

      c4522b95034acac58f3a65b8688a87f301d5425c7e235573b57a6b822f637ad7

    • SHA512

      076869080dc4c97ef90e96f05bd4b6ad9c49c876fd2853bfd002301e17dc7d13429060731349b62b1bfbb6f2d1ab45ba3c28a5ba5e8ad2fbf0b56251a7bb89d8

    Score
    3/10
    • Target

      NightyGo/data/nitrosound.mp3

    • Size

      8KB

    • MD5

      812c7504df40d796245774dce0e6c85c

    • SHA1

      6c1c3bb3ce138b29a2681af9e6b6dbaab80e1e47

    • SHA256

      3b8d47c95911247ffcdbb44fe1111852d447cfef21ed9dd52e72577671e531f3

    • SHA512

      e8cb13c6e81c9df4052af65357574ddf8f71f6c4400b3eea95f617471375be2f91ac1706da6edf12fcce9d7ea09deda83747fef56b4ed93b6ff95920c3fa5ddc

    • SSDEEP

      192:QCsw5oFc5mypvMcYkYP9Y6fFqztAeQSXrPs7ZApBh3:5srFSpvMDr9TwtAeQWPs783

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks