2ebaeeec8d4f6b267d466e1ea0cbcd3e356f422c76f063c26d56131f951d5723

Analysis

max time kernel
140s
max time network
143s
platform
windows10-1703_x64
resource
win10-20220812-en
resource tags

arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
submitted
08-12-2022 16:20

Target

unutterably/satiable.txt
Size

271KB
MD5

22fc32b30495260a3b27671998255bff
SHA1

a2ca307ef89e6531ef8accbdbb681c1ff140e7fb
SHA256

7053377af4a72e098365da4d4dc0e288456b7e54d3784d0e30b59ec05a8f18c7
SHA512

bda5312cf0a035ab15cd76c6628a9ca2d27e6e56103a06923f2756ff36e9be3385a8daa1e349d04ebfaf5b8f3ac8a863eb0ec10c37b7258ef8144c239d69b495
SSDEEP

6144:eOYyyONHH/MOKMHHH6GOcoHgHHHHDW20EeSnwaBGxwJ3wBS6OlH0HsO+HVOFHHHr:eOMONHHkOKMHHHdOcoHgHHHHPwuEwJ3A

Score

1^/10

Opens file in notepad (likely ransom note) 1 IoCs
ransomware

Processes:

NOTEPAD.EXE

pid process

2620 NOTEPAD.EXE

pid	process
2620	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\unutterably\satiable.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:2620