Overview

overview

1

Static

static

1

1.txt

windows7-x64

1

Analysis

  • max time kernel
    108s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20230621-en
  • resource tags

    arch:x64arch:x86image:win7-20230621-enlocale:en-usos:windows7-x64system
  • submitted
    27/06/2023, 13:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1.txt

  • Size

    46B

  • MD5

    708532fe2826f6111f20bf60281b2096

  • SHA1

    08505f9daee8f07a12f7ae849025e93dd4bfa3d5

  • SHA256

    f4bf7fa09b22b36beaf2abe616919d1a4251a2b5e5344b8a540795a02010a188

  • SHA512

    b07ebc3cd61dcaf4c756522857e3c73c1d74b3ea59c6a33728c3fc0b800c3219986a0bcade310e041e4e8e001a6e9130f887b2f409eb49f0c6b18f81d44a6685

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\1.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:1320
  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef65b9758,0x7fef65b9768,0x7fef65b9778
    1⤵
      PID:872
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1132 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:2
      1⤵
        PID:1060
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1524 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
        1⤵
          PID:752
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1648 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
          1⤵
            PID:1544
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=6 --mojo-platform-channel-handle=2244 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
            1⤵
              PID:1708
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=5 --mojo-platform-channel-handle=2304 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
              1⤵
                PID:1808
              • C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
                "C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
                1⤵
                  PID:1148
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1560 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:2
                  1⤵
                    PID:2064
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=8 --mojo-platform-channel-handle=1124 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                    1⤵
                      PID:2132
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3920 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
                      1⤵
                        PID:2208
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3928 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
                        1⤵
                          PID:2216
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=11 --mojo-platform-channel-handle=3992 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                          1⤵
                            PID:2304
                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=12 --mojo-platform-channel-handle=4288 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                            1⤵
                              PID:2376
                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=13 --mojo-platform-channel-handle=3980 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                              1⤵
                                PID:2444
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=14 --mojo-platform-channel-handle=2476 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                                1⤵
                                  PID:2560
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=2360 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
                                  1⤵
                                    PID:2620
                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1124 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
                                    1⤵
                                      PID:2700
                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3836 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
                                      1⤵
                                        PID:2692
                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=2300 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                                        1⤵
                                          PID:2776
                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=19 --mojo-platform-channel-handle=3180 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:1
                                          1⤵
                                            PID:2972
                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3624 --field-trial-handle=1272,i,8716662752731774767,11275375945016006947,131072 /prefetch:8
                                            1⤵
                                              PID:2264

                                            Network

                                            MITRE ATT&CK Matrix

                                            Replay Monitor

                                            Loading Replay Monitor...

                                            Downloads

                                            • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
                                              Filesize

                                              1KB

                                              MD5

                                              2f7fdc4c2e3a5f9003a3a231bdb24359

                                              SHA1

                                              b4339e5f29a6ebf0b0b0dc0ffa41b4af3ceb9cef

                                              SHA256

                                              8789d1096d8b84d15dc012b348e8a150bd81ac59dfa36a44875183ccb403e8a6

                                              SHA512

                                              4a355062b586f9de62f67f9cd6cd47e57c4007e2147b5c6270c6263a4632ce2c7837917148e647de2ee9251ebeb952037d1e8e0479a907a725a0854b41cb44ee

                                              Download Submit

                                            • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
                                              Filesize

                                              526B

                                              MD5

                                              686369d2abd8dad56668b019ae5ab9f1

                                              SHA1

                                              0d45cb0539a6d6c1a468e78e661a614b5c15bbce

                                              SHA256

                                              6582d570fe16b12ce4ad7510592e4d4b6325efe93429d3d835cadb1139bbfd0d

                                              SHA512

                                              c7f2287daa4c0d04ecaf1f5818741ecac84107f009a6b951cb9bc6cf399f29f8d07e4ed622c32ef012f7af489af152be4d01086c8be7d8396642227a2c6c3e30

                                              Download Submit

                                            • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
                                              Filesize

                                              526B

                                              MD5

                                              d5abd6effc0e2733a16310f54abc8f3a

                                              SHA1

                                              09d5553c317969e057c6efb0da5a6867c7c4cd2b

                                              SHA256

                                              6f66eac0add31358b19fe26b42d2ef6cf9a3b66307a2c8ab3fbe7a6b72286463

                                              SHA512

                                              3f0db0e39562bf1bc2e6bdf41ad79486e01ce7aa4e427f3f2f7ff187d681bde0248ddacbed5e11bdcd95d9a8cb3122a0714c83c50f8e0135bd4599e6547e4ee0

                                              Download Submit

                                            • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
                                              Filesize

                                              526B

                                              MD5

                                              52c929230f506555dace7b591f409bd7

                                              SHA1

                                              39169cd6e577b19a1742a159171a7a7dd2ff87bc

                                              SHA256

                                              bda4d2f297361499b61235b91bb6bcd9a7baf84ad8360bd9432fc4f795d45501

                                              SHA512

                                              42a70ee1c83987c406ce659ac9cb9fd6c1432c71d208020b404dd1f8734707b298f714530b4ceeac8845eeedd8c23d1e121723e66702365b2e049fcc6ab3a1e2

                                              Download Submit

                                            • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
                                              Filesize

                                              526B

                                              MD5

                                              af6124fb9f6079332f81beb0e72de9fd

                                              SHA1

                                              da616edd696d07fe28c5181785c38b4d92ac9e9f

                                              SHA256

                                              ce4c8cfffecb5f699cefd757c8ce137f0b5078a07c17884d2adf21171de320e2

                                              SHA512

                                              4369149e2997b2eecc5d3477c51de4ae3226425736f8f4ee752ea0ec37651a4024e296c45dd4858b4d5f8a36ad790eadadf43eacd3b2584ac58ea721bec450ff

                                              Download Submit

                                            • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
                                              Filesize

                                              526B

                                              MD5

                                              81864122f92f4be895305c0c1b24378e

                                              SHA1

                                              19c870a7d49d842ab00d4f59fc46ab0408c53ad9

                                              SHA256

                                              7fcc5d3d24deb1edb86d482dba3abed3952766f5a7f7a695d10bca3929f610cd

                                              SHA512

                                              21ab442d4ca35fcfca972d3d128541e364d9394fb3b374d76a6ace01cfd9b8664bba0ccbfe64229c525012ab6198dcf0aaccf0ec825bf5fa8adc7a7b72c3841b

                                              Download Submit