d183a256700192ba485c441674789d0241a59688015119bf65d5cb2078e2cc13 | Triage

Analysis

max time kernel
31s
max time network
34s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
30-03-2023 14:06

Sharing

Report Analysis Logs

General

Target

0pen.me.txt
Size

147B
MD5

5a6dfcb18ec0979378b9fb4b57c1e43c
SHA1

d19db4226921efc9af8002fdc53f002474eb3e11
SHA256

494e0562d348b514f1ae128a26f3b23b69556e52c01bf7d10a056a352bb80bb2
SHA512

b0e293d3d92e8c9eb172238bfb2cee8f1b4dee9176b40377b37d87d500daece04fdfe31cd0158cc3087c3d43d0c6c2e07cca2900b501e9b73fe87052b4d842cd

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs
ransomware

Processes:

NOTEPAD.EXE

pid process

1712 NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\0pen.me.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:1712

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...