Overview

overview

10

Static

static

1

1.zip

windows7-x64

1

1.zip

windows10-2004-x64

1

AudioCapture.dll

windows7-x64

1

AudioCapture.dll

windows10-2004-x64

1

HTCTL32.dll

windows7-x64

1

HTCTL32.dll

windows10-2004-x64

3

NSM.lic

windows7-x64

3

NSM.lic

windows10-2004-x64

3

PCICHEK.dll

windows7-x64

1

PCICHEK.dll

windows10-2004-x64

1

PCICL32.dll

windows7-x64

1

PCICL32.dll

windows10-2004-x64

1

TCCTL32.dll

windows7-x64

1

TCCTL32.dll

windows10-2004-x64

1

client32.exe

windows7-x64

10

client32.exe

windows10-2004-x64

10

client32.ini

windows7-x64

1

client32.ini

windows10-2004-x64

1

msvcr100.dll

windows7-x64

3

msvcr100.dll

windows10-2004-x64

3

nskbfltr.inf

windows7-x64

1

nskbfltr.inf

windows10-2004-x64

1

nsm_vpro.ini

windows7-x64

1

nsm_vpro.ini

windows10-2004-x64

1

pcicapi.dll

windows7-x64

1

pcicapi.dll

windows10-2004-x64

1

remcmdstub.exe

windows7-x64

1

remcmdstub.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    31s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    04/05/2023, 11:50 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    client32.ini

  • Size

    919B

  • MD5

    1c5dde5b0e8f8d65ba782a144129c78f

  • SHA1

    014ed23957d9fd5ddbee8e8a5782b881ebcb2602

  • SHA256

    ebf387d80981c731d812bcb8e1a1d48fdb43e81c3bc206fda05753b6a3dc8d0b

  • SHA512

    226ab2c1a79107e01563e14e9a77c98ac09aec2181cdf057533e77cd20a5e48885b896c6bd97a81dea030aee12e2cb055d58fe9310edf3459e277d2279ab6c9b

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\client32.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.