Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

NightyGo.rar

windows7-x64

3

NightyGo.rar

windows10-2004-x64

3

NightyGo/NightyGo.exe

windows7-x64

1

NightyGo/NightyGo.exe

windows10-2004-x64

1

NightyGo/config.json

windows7-x64

3

NightyGo/config.json

windows10-2004-x64

3

NightyGo/d...nd.mp3

windows7-x64

1

NightyGo/d...nd.mp3

windows10-2004-x64

6

Analysis

  • max time kernel
    140s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04/07/2024, 12:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NightyGo/data/nitrosound.mp3

  • Size

    8KB

  • MD5

    812c7504df40d796245774dce0e6c85c

  • SHA1

    6c1c3bb3ce138b29a2681af9e6b6dbaab80e1e47

  • SHA256

    3b8d47c95911247ffcdbb44fe1111852d447cfef21ed9dd52e72577671e531f3

  • SHA512

    e8cb13c6e81c9df4052af65357574ddf8f71f6c4400b3eea95f617471375be2f91ac1706da6edf12fcce9d7ea09deda83747fef56b4ed93b6ff95920c3fa5ddc

  • SSDEEP

    192:QCsw5oFc5mypvMcYkYP9Y6fFqztAeQSXrPs7ZApBh3:5srFSpvMDr9TwtAeQWPs783

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 33 IoCs
  • Suspicious use of SendNotifyMessage 32 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\NightyGo\data\nitrosound.mp3"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\vlc\vlc-qt-interface.ini
    Filesize

    100B

    MD5

    85703f7fb923fc555097b7b4a7aa1c4d

    SHA1

    eead7c79861e5eeebec274e48256175e8089b260

    SHA256

    7d5c04b477dffaf08c4a826fd6bc17fe3c72561da8302a3537027a22027796f6

    SHA512

    7fcc497a95981b99707e268c9df3330bc504f7b06e534d9c230f4a6af2bd55fea7d2942dd38e700020bb571d4a6489de51121bc0bd39a320928898f0fec5b3a8

    Download Submit

  • C:\Users\Admin\AppData\Roaming\vlc\vlc-qt-interface.ini.lock
    Filesize

    18B

    MD5

    27b9625d4b77d1e5cf3b2d965169121e

    SHA1

    4c5f620babc5c8e466815822f4503adf42bc3ea1

    SHA256

    8ad1bda60a772a7368702b6b975df3d8b6fae16b20b965c4ec47d09a8264e033

    SHA512

    25df79f5623d555000158146dfbb4d35f226b9319aa7f5fda257fd6436c8df9f8c276c49d2800da231c1d9f3921d964640a9226082fe03230426e9c1f90b674d

    Download Submit

  • memory/2972-28-0x000007FEF5220000-0x000007FEF528F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/2972-9-0x000007FEFAF00000-0x000007FEFAF17000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2972-10-0x000007FEF86D0000-0x000007FEF86E1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-11-0x000007FEF78F0000-0x000007FEF7907000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2972-12-0x000007FEF78D0000-0x000007FEF78E1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-13-0x000007FEF78B0000-0x000007FEF78CD000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2972-7-0x000007FEF6640000-0x000007FEF68F4000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2972-19-0x000007FEF6CB0000-0x000007FEF6CC1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-20-0x000007FEF6C90000-0x000007FEF6CA1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-18-0x000007FEF6CD0000-0x000007FEF6CE8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2972-17-0x000007FEF6CF0000-0x000007FEF6D11000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2972-16-0x000007FEF6D20000-0x000007FEF6D5F000-memory.dmp

    Filesize

    252KB

    Download

  • memory/2972-15-0x000007FEF6D60000-0x000007FEF6D71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-14-0x000007FEF6440000-0x000007FEF6640000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2972-22-0x000007FEF6C70000-0x000007FEF6C81000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-24-0x000007FEF5350000-0x000007FEF5361000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-23-0x000007FEF5370000-0x000007FEF538B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2972-25-0x000007FEF5330000-0x000007FEF5348000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2972-26-0x000007FEF5300000-0x000007FEF5330000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2972-27-0x000007FEF5290000-0x000007FEF52F7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2972-30-0x000007FEF51E0000-0x000007FEF51F7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2972-6-0x000007FEF86F0000-0x000007FEF8724000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2972-29-0x000007FEF5200000-0x000007FEF5211000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-31-0x000007FEF51C0000-0x000007FEF51D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-33-0x000007FEF5130000-0x000007FEF515F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/2972-35-0x000007FEF50F0000-0x000007FEF5101000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-34-0x000007FEF5110000-0x000007FEF5123000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2972-32-0x000007FEF5160000-0x000007FEF51B7000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2972-36-0x000007FEF5020000-0x000007FEF50E5000-memory.dmp

    Filesize

    788KB

    Download

  • memory/2972-37-0x000007FEF3490000-0x000007FEF34E6000-memory.dmp

    Filesize

    344KB

    Download

  • memory/2972-38-0x000007FEF3460000-0x000007FEF3488000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2972-39-0x000007FEF3430000-0x000007FEF3454000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2972-41-0x000007FEF3410000-0x000007FEF3426000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2972-45-0x000007FEF3290000-0x000007FEF32A5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2972-47-0x000007FEF3230000-0x000007FEF3242000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2972-46-0x000007FEF3250000-0x000007FEF3261000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2972-44-0x000007FEF32B0000-0x000007FEF331D000-memory.dmp

    Filesize

    436KB

    Download

  • memory/2972-43-0x000007FEF3320000-0x000007FEF3382000-memory.dmp

    Filesize

    392KB

    Download

  • memory/2972-42-0x000007FEF3390000-0x000007FEF3405000-memory.dmp

    Filesize

    468KB

    Download

  • memory/2972-40-0x000007FEFAEF0000-0x000007FEFAF00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2972-48-0x000007FEF30B0000-0x000007FEF322A000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2972-21-0x000007FEF5390000-0x000007FEF643B000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2972-8-0x000007FEFBAE0000-0x000007FEFBAF8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2972-5-0x000000013F8E0000-0x000000013F9D8000-memory.dmp

    Filesize

    992KB

    Download