98761de8cb4e91079b0c34a1e5558dba347d976fc0ab0250a9f66ad706a93db9

Resubmissions

02-10-2022 15:25

30-09-2022 13:52

max time kernel
114s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
02-10-2022 15:25

Target

cadets/perpendicularly.txt
Size

162KB
MD5

5951428465e51098f54f40be08c89954
SHA1

0619323deb9b9d1792a6b44e39d44ce964a1c384
SHA256

d0d2615d7f163f7f48fe5fb6181e78894e92706444c11391be15d46c3799ed62
SHA512

7a41f6859175740bbb27553eeb0fe08418929e91dd44f000bbff57acc747fc3ecccf8102619f253b9ef0ae96d1488d674709ddda22ca8e46382d639bf2ef95fa
SSDEEP

3072:+buB73uBbAPBT3NlDCNxq8VoWeYFb3NlD99cDlB+lDyQWtRoWszSlmv3NlDMebvU:+buBjuBbcBRlDqiWecplD9uB+lDatyW7

Score

1^/10

Opens file in notepad (likely ransom note) 1 IoCs
ransomware

Processes:

NOTEPAD.EXE

pid process

3444 NOTEPAD.EXE

pid	process
3444	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\cadets\perpendicularly.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:3444