Overview

overview

10

Static

static

10

Nitro.exe

windows7-x64

7

Nitro.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    7s
  • max time network
    4s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2024, 12:39 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Nitro.exe

  • Size

    7.5MB

  • MD5

    5467739498d2eb3e3fcd9e3db8e37bf9

  • SHA1

    aed987e92c27819f4f133e199e8aecf4ea4ad382

  • SHA256

    67808dd8311955a0bab507868874f1ba8fd987c831d6e122c16d1cad14c2bf25

  • SHA512

    8d8b500b272c12c30d8a0a34006c9cc2ecf8b09914ebaf7de1718fb2716ade05c1ed5ceb521f551048948cba5d261f7fdde413305ecc91029971d997334d078e

  • SSDEEP

    196608:o0gFnwfI9jUC2gYBYv3vbW5+iITm1U6fR:yFsIH2gYBgDW4TOzJ

Score
7/10
upx

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Nitro.exe
    "C:\Users\Admin\AppData\Local\Temp\Nitro.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2776
    • C:\Users\Admin\AppData\Local\Temp\Nitro.exe
      "C:\Users\Admin\AppData\Local\Temp\Nitro.exe"
      2⤵
      • Loads dropped DLL
      PID:2456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI27762\python312.dll
    Filesize

    1.7MB

    MD5

    6f7c42579f6c2b45fe866747127aef09

    SHA1

    b9487372fe3ed61022e52cc8dbd37e6640e87723

    SHA256

    07642b6a3d99ce88cff790087ac4e2ba0b2da1100cf1897f36e096427b580ee5

    SHA512

    aadf06fd6b4e14f600b0a614001b8c31e42d71801adec7c9c177dcbb4956e27617fa45ba477260a7e06d2ca4979ed5acc60311258427ee085e8025b61452acec

    Download Submit

  • memory/2456-23-0x000007FEF6820000-0x000007FEF6EE5000-memory.dmp

    Filesize

    6.8MB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.