Overview

overview

6

Static

static

3

SugarySpir...02.rar

windows7-x64

3

SugarySpir...02.rar

windows10-2004-x64

3

SugarySpir...re.exe

windows7-x64

1

SugarySpir...re.exe

windows10-2004-x64

1

SugarySpir...ta.win

windows7-x64

3

SugarySpir...ta.win

windows10-2004-x64

3

SugarySpir...ro.mp4

windows7-x64

1

SugarySpir...ro.mp4

windows10-2004-x64

6

SugarySpir...ns.ini

windows7-x64

1

SugarySpir...ns.ini

windows10-2004-x64

1

SugarySpir...ce.dll

windows7-x64

1

SugarySpir...ce.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    130s
  • max time network
    163s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-06-2023 10:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SugarySpire_Dance_And_Cafe_Test_V1.02/options.ini

  • Size

    62B

  • MD5

    155b346779df431c691b195605745d3c

  • SHA1

    f56af0bcb23b12dfd7e4306ac1fc2db9fb8fc2bc

  • SHA256

    5f3b24219b3c42c45e98da1d8997b36f793432276a6c980c7553b7a2aacdd277

  • SHA512

    f5b56edf07c07e7f16ac60dd3cbfbb3c063664cd0341c62fd4ada268ce47a3d7af4b7032c4fc67ee48425669a2bf2bd6172f29f6e7ff9a36fe25e72715c618ce

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\SugarySpire_Dance_And_Cafe_Test_V1.02\options.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:4740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads