Overview

overview

6

Static

static

3

NoliMeTangere.exe

windows10-2004-x64

6

NoliMeTangere.exe

windows11-21h2-x64

3

Analysis

  • max time kernel
    453s
  • max time network
    454s
  • platform
    windows11-21h2_x64
  • resource
    win11-20250410-en
  • resource tags

    arch:x64arch:x86image:win11-20250410-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    17/04/2025, 01:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NoliMeTangere.exe

  • Size

    3.5MB

  • MD5

    396398228d730d66de7d4d9fceee5966

  • SHA1

    5fad8c7aa286cf4d3da7d2b9d9fb2227288caeac

  • SHA256

    714cd825be3ab825d2a82da3ab68542ec9c75ea57d30c3859cac7daa7ed1e32c

  • SHA512

    20c6d37323d958fbc770f78c93705b598a79c50fec622b2e37c14021df6546ba506f1f5e875a57a5fdc7f5ccf4f05699f5435447eaa6e1d37f9c9586afd0de82

  • SSDEEP

    49152:sr6ASzxURFp2YZiYaTNhYikKJqdhcFSgHT4QbHoeS3e5pTvMvsTT0lRTFf/32XjG:SSzmOYaTNhYikKJqduF1zl8RTNGprQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

Processes

  • C:\Users\Admin\AppData\Local\Temp\NoliMeTangere.exe
    "C:\Users\Admin\AppData\Local\Temp\NoliMeTangere.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Checks processor information in registry
    PID:5772

Network

MITRE ATT&CK Enterprise v16

Replay Monitor

Loading Replay Monitor...

Downloads