Overview

overview

9

Static

static

7

m.zip

windows7-x64

1

m.zip

windows10-2004-x64

1

6.txt

windows7-x64

1

6.txt

windows10-2004-x64

1

MSVCR100.dll

windows7-x64

3

MSVCR100.dll

windows10-2004-x64

3

WebView2Loader.dll

windows7-x64

3

WebView2Loader.dll

windows10-2004-x64

3

at.txt

windows7-x64

1

at.txt

windows10-2004-x64

1

b.txt

windows7-x64

1

b.txt

windows10-2004-x64

1

c.txt

windows7-x64

1

c.txt

windows10-2004-x64

1

exe.exe

windows7-x64

3

exe.exe

windows10-2004-x64

3

i7.exe

windows7-x64

1

i7.exe

windows10-2004-x64

1

jli.dll

windows7-x64

9

jli.dll

windows10-2004-x64

9

Resubmissions

09-05-2023 00:46

230509-a459tade92 7

09-05-2023 00:38

230509-ay2dnsde74 9

Analysis

  • max time kernel
    29s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2023 00:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    at.txt

  • Size

    4.3MB

  • MD5

    5b0804d17be88b45955d8dd9daeb7489

  • SHA1

    620d12a9ced5be117da596fd07faf49f51ef3bb1

  • SHA256

    32d6b447a82448ae2cd9a2a9602ad65a7b3bd0094ba19855ede15de1eca9822c

  • SHA512

    8378f6bc172e7507a558fefd34abbdcde1196bde71442f8a5e4c610f1459126a633ae7c2c208c783c83a60731545d9baa3a5d70fb587e4a492c1a53e173d77b3

  • SSDEEP

    98304:Ned/gkRJ53hSpJnf531K4WWAMSP33ift1lkqHmYoWWoT6NXlfI9SJ:N+ZRJ5x0nhl7WWzSP33ifxkSoFs6vIQ

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\at.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:1984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads