Overview
overview
4Static
static
3Mercedes-B...al.rar
windows10-2004-x64
3mercedes_e...un.exe
windows10-2004-x64
1mercedes_e...lp.cnt
windows10-2004-x64
3mercedes_e...lp.hlp
windows10-2004-x64
4mercedes_e...ce.dat
windows10-2004-x64
3mercedes_e...ev.dhl
windows10-2004-x64
3mercedes_e..._2.txt
windows10-2004-x64
1mercedes_e...un.inf
windows10-2004-x64
1mercedes_e...lt.jpg
windows10-2004-x64
3mercedes_e...lt.txt
windows10-2004-x64
1Analysis
-
max time kernel
85s -
max time network
98s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
03/06/2023, 20:17
Static task
static1
Behavioral task
behavioral1
Sample
Mercedes-Benz W124 1985-1995 Service Manual.rar
Resource
win10v2004-20230220-en
Behavioral task
behavioral2
Sample
mercedes_e_class_w124_1985_1995_mult/Run/Run.exe
Resource
win10v2004-20230220-en
Behavioral task
behavioral3
Sample
mercedes_e_class_w124_1985_1995_mult/Run/help.cnt
Resource
win10v2004-20230220-en
Behavioral task
behavioral4
Sample
mercedes_e_class_w124_1985_1995_mult/Run/help.hlp
Resource
win10v2004-20230220-en
Behavioral task
behavioral5
Sample
mercedes_e_class_w124_1985_1995_mult/Run/interface.dat
Resource
win10v2004-20230220-en
Behavioral task
behavioral6
Sample
mercedes_e_class_w124_1985_1995_mult/Run/mev.dhl
Resource
win10v2004-20230220-en
Behavioral task
behavioral7
Sample
mercedes_e_class_w124_1985_1995_mult/W124_2.txt
Resource
win10v2004-20230220-en
Behavioral task
behavioral8
Sample
mercedes_e_class_w124_1985_1995_mult/autorun.inf
Resource
win10v2004-20230220-en
Behavioral task
behavioral9
Sample
mercedes_e_class_w124_1985_1995_mult/mercedes_e_class_w124_1985_1995_mult.jpg
Resource
win10v2004-20230220-en
Behavioral task
behavioral10
Sample
mercedes_e_class_w124_1985_1995_mult/mercedes_e_class_w124_1985_1995_mult.txt
Resource
win10v2004-20230220-en
General
-
Target
mercedes_e_class_w124_1985_1995_mult/W124_2.txt
-
Size
734B
-
MD5
0c224279ca1e4e1ab71599f38777ce4f
-
SHA1
a72298586e0e32dd9c190359ebce8ed3d211621f
-
SHA256
cd3b15e63ea3b29c8b398e10b1f594e4ac0f2c1dbea85e3fe3abf102e3d6c8d9
-
SHA512
ecccd6e5561f48a21789bcab0cee4067eb7cb30d2892ada022dd241a9af33a471705c4080fda335f9cdfd2ed3e7bbcd13026af3e995aad12eb63100e2c0abd31
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
pid Process 4676 NOTEPAD.EXE