Overview

overview

10

Static

static

5

45480a8dc0...18.exe

windows7-x64

10

45480a8dc0...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45480a8dc0075b3959abd941115f9217c4326d2fb058ed59520b1e2abbbfc418.exe

  • Size

    4.0MB

  • Sample

    250208-n9ln9avnep

  • MD5

    ededea3aec5aa7bac902d6ae00cb5d23

  • SHA1

    71eab1e97d6ffdc9b79af8f7a616d96ccdd3ab79

  • SHA256

    45480a8dc0075b3959abd941115f9217c4326d2fb058ed59520b1e2abbbfc418

  • SHA512

    1f20cca6a0522aa51e4d74e171dd8442a97d7c6b75b909d89d810b320529776aca2544c47329b925cd6d989c24af1e67ec853fcc6e92b03093e80d089ecebb9a

  • SSDEEP

    24576:Etb20pkfCqT5TBWgNQ7aWS6aWTtVXVChV1SzCaJWN7W6Ar:tCg5tQ7aCbTvEhVgGaJ8q5r

Score
10/10
nanocorediscoverykeyloggerspywarestealertrojanupx

Malware Config

Targets

    • Target

      45480a8dc0075b3959abd941115f9217c4326d2fb058ed59520b1e2abbbfc418.exe

    • Size

      4.0MB

    • MD5

      ededea3aec5aa7bac902d6ae00cb5d23

    • SHA1

      71eab1e97d6ffdc9b79af8f7a616d96ccdd3ab79

    • SHA256

      45480a8dc0075b3959abd941115f9217c4326d2fb058ed59520b1e2abbbfc418

    • SHA512

      1f20cca6a0522aa51e4d74e171dd8442a97d7c6b75b909d89d810b320529776aca2544c47329b925cd6d989c24af1e67ec853fcc6e92b03093e80d089ecebb9a

    • SSDEEP

      24576:Etb20pkfCqT5TBWgNQ7aWS6aWTtVXVChV1SzCaJWN7W6Ar:tCg5tQ7aCbTvEhVgGaJ8q5r

    Score
    10/10
    nanocorediscoverykeyloggerspywarestealertrojanupx

    • NanoCore

      NanoCore is a remote access tool (RAT) with a variety of capabilities.

      keyloggertrojanstealerspywarenanocore

    • Nanocore family

      nanocore

    • Drops startup file

    • Drops desktop.ini file(s)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks