883ed64083968eec69d6974ce6f58e5cce6d84319a71a439edcb4f0a06283b97 | Triage

Resubmissions

28-02-2023 04:33

230228-e6jwtahe77 10

28-02-2023 04:28

230228-e3nqlahe69 10

Analysis

max time kernel
85s
max time network
90s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
28-02-2023 04:33

Sharing

Report Analysis Logs

General

Target

readme.txt
Size

740B
MD5

4dc812ec4ed8b9f6b117eebf783d78cc
SHA1

4f17b61b3693b3469e61781af895e7e437a6e5ad
SHA256

8746b7b6305d3fd5d986fab51e9db647319b5673bb96b7d8082e416ab2508b03
SHA512

92c9215d387f0c29147d69d47f4a07ac1f093504eb14e63160838001d179e164c51efe1459a269a396263edf6bc1c4faea206671591ee728b907506f034c7d15

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs
ransomware

Processes:

NOTEPAD.EXE

pid process

2452 NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\readme.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:2452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...