empyrean | bc66f998ee221e65bdaee9453cb4e04e18657108b2f4fa759f33852c23dfff97 | Triage

Submit
Reports

Overview

overview

Static

static

Nitr0.exe

windows10-ltsc 2021-x64

7

Sharing

General

Target

Nitr0.exe
Size

17.6MB
Sample

241128-z9bd3a1mes
MD5

f1dbe5580ca5248f12d00a674264099f
SHA1

05fcf594e2864ab72eafe96926f2d78c060741c3
SHA256

bc66f998ee221e65bdaee9453cb4e04e18657108b2f4fa759f33852c23dfff97
SHA512

d1f0d5f28b583e51988763ec88838c0d8a9f0de137ff064401a8b1b4af390ab81f50a1fc687bade673303f02e2a3e400ce2d1dd7735596529ff813c154518d56
SSDEEP

393216:4qPnLFXlrPmQ8DOETgsvfGFVgWH6NvEiud50MXY/q:pPLFXNOQhE+tZioiMr

Score

10^/10

empyrean discovery pyinstaller upx

Static task

static1

pyinstaller empyrean

4 signatures

Behavioral task

behavioral1

Sample

Nitr0.exe

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

15 signatures

1200 seconds

Malware Config

Targets

- Target
  
  Nitr0.exe
- Size
  
  17.6MB
- MD5
  
  f1dbe5580ca5248f12d00a674264099f
- SHA1
  
  05fcf594e2864ab72eafe96926f2d78c060741c3
- SHA256
  
  bc66f998ee221e65bdaee9453cb4e04e18657108b2f4fa759f33852c23dfff97
- SHA512
  
  d1f0d5f28b583e51988763ec88838c0d8a9f0de137ff064401a8b1b4af390ab81f50a1fc687bade673303f02e2a3e400ce2d1dd7735596529ff813c154518d56
- SSDEEP
  
  393216:4qPnLFXlrPmQ8DOETgsvfGFVgWH6NvEiud50MXY/q:pPLFXNOQhE+tZioiMr
Score

7^/10

discovery upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

pyinstallerempyrean

behavioral1

© 2018-2024

Terms | Privacy