f1943f296c57ddf25814b58caaa77b3a460f966395551ec3a3c6242697eb962b

Analysis

max time kernel
462s
max time network
494s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
13/01/2023, 19:27

Target

ViewStateConfiguration.txt
Size

12KB
MD5

99b96b3d22809b48893aa717e8d318d0
SHA1

2f942b2f30899000f46cec6c97e9c0bd70af3760
SHA256

ed5cfc95a8b47194e8ad2a5722a3e1c230b7c263b57016667cc14f668185edeb
SHA512

168f9d36fd2e749bc12b3555dc0417b99ed9e0709ae3a1d1f52264021cf3da9062290c463f2fdc105a54bb0865d9f3ec41210a03f496a53f886e2426a4ae8661
SSDEEP

384:SehzlqgJdPl8kTWQyRA6/PN3RmZWzzFP7w+GsCvm+e7oKckqBvT/m1lxTR34lXkS:jhpJdPl8kTWQyRA6/PN3RmZWzzFP7w+A

Score

1^/10

Opens file in notepad (likely ransom note) 1 IoCs

pid	Process
5052	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\ViewStateConfiguration.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:5052