The file is a known malicious executable often associated with infostealers and Remote Access Trojans (RATs) . Automated analysis from security platforms like Joe Sandbox and ANY.RUN classifies this specific filename as a high-risk threat that targets user data and system stability. Malware Analysis Overview Classification: Infostealer / FixStealer.
748ae90e9d1fb69c6a403d549adf5ffb91c79653969b2eec0095526888d4701d Observed Malicious Behaviors
Based on behavioral analysis reports, performs several unauthorized actions upon execution:
If the file has already been run, assume sensitive credentials (passwords, cookies) have been compromised. Change your passwords from a clean device.
May attempt to establish itself within the system to ensure it runs even after a reboot. The "Nitrogen" Campaign Context
Utilizes curl.exe to communicate with external servers, potentially to exfiltrate stolen data.
The file is a known malicious executable often associated with infostealers and Remote Access Trojans (RATs) . Automated analysis from security platforms like Joe Sandbox and ANY.RUN classifies this specific filename as a high-risk threat that targets user data and system stability. Malware Analysis Overview Classification: Infostealer / FixStealer.
748ae90e9d1fb69c6a403d549adf5ffb91c79653969b2eec0095526888d4701d Observed Malicious Behaviors Nitro_Gen.exe
Based on behavioral analysis reports, performs several unauthorized actions upon execution: The file is a known malicious executable often
If the file has already been run, assume sensitive credentials (passwords, cookies) have been compromised. Change your passwords from a clean device. assume sensitive credentials (passwords
May attempt to establish itself within the system to ensure it runs even after a reboot. The "Nitrogen" Campaign Context
Utilizes curl.exe to communicate with external servers, potentially to exfiltrate stolen data.
