803246a15fd62e227e8e25a1b078e0c35833e942cab4db265e78fd7a52367af8 | Triage

Analysis

max time kernel
48s
max time network
62s
platform
windows10-1703_x64
resource
win10-20220812-en
resource tags

arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
submitted
07-01-2023 08:59

Sharing

Report Analysis Logs

General

Target

updatebackend.log
Size

4B
MD5

5a01f0597ac4bdf35c24846734ee9a76
SHA1

a385d9e8d3b9d07483e610819de992510883b36b
SHA256

b33ed571eded536f0f0bc2be4e4384055acd592fe6652a555320fdca4dbeb175
SHA512

42caf8b73b98f8cb1d9bfbf477b468414bc0fe9160d4e5151076ffe284b78d10227cac7b4f435a29f79768358a74406960e62a90222a0258b4a4662f2efa4008

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs
ransomware

Processes:

NOTEPAD.EXE

pid process

2340 NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\updatebackend.log
1⤵
- Opens file in notepad (likely ransom note)
PID:2340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...