c9a5289c40bc7ccabea36ae1bf56923be5cb6f32858e6d5afc3b561b35a12068 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

nolami2.exe

windows7-x64

Sharing

General

Target

nolami2.exe
Size

106KB
Sample

240907-sj6zqazcnn
MD5

deb24aaea6aef5b629b92691c330e130
SHA1

ddf1d6aa03cb23b7925dfcd1cc5b70ee5de77184
SHA256

c9a5289c40bc7ccabea36ae1bf56923be5cb6f32858e6d5afc3b561b35a12068
SHA512

34a0819cb183da07828a9c78541ace24606b31721446f47ab821b6f1b296e45b455166de9d30a2a2b358729968554d032fb1b2a39a15ff42b845dc11631de172
SSDEEP

1536:L7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfAx3T8iVf8tv7roai:Hq6+ouCpk2mpcWJ0r+QNTBfA1Tt3

Score

10^/10

google defense_evasion discovery evasion phishing trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

nolami2.exe

Resource

win7-20240903-en

google defense_evasion discovery evasion phishing trojan

windows7-x64

17 signatures

600 seconds

Malware Config

Targets

- Target
  
  nolami2.exe
- Size
  
  106KB
- MD5
  
  deb24aaea6aef5b629b92691c330e130
- SHA1
  
  ddf1d6aa03cb23b7925dfcd1cc5b70ee5de77184
- SHA256
  
  c9a5289c40bc7ccabea36ae1bf56923be5cb6f32858e6d5afc3b561b35a12068
- SHA512
  
  34a0819cb183da07828a9c78541ace24606b31721446f47ab821b6f1b296e45b455166de9d30a2a2b358729968554d032fb1b2a39a15ff42b845dc11631de172
- SSDEEP
  
  1536:L7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfAx3T8iVf8tv7roai:Hq6+ouCpk2mpcWJ0r+QNTBfA1Tt3
Score

10^/10

google defense_evasion discovery evasion phishing trojan
- Detected google phishing page
  phishing google
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Modifies Windows Defender notification settings
  evasion trojan
- Modifies security service
  evasion
- Modifies Security services
  Modifies the startup behavior of a security service.
  defense_evasion
- Modifies boot configuration data using bcdedit
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

googledefense_evasiondiscoveryevasionphishingtrojan

© 2018-2025

Terms | Privacy