Overview

overview

6

Static

static

3

PvZWidescr....2.zip

windows7-x64

1

PvZWidescr....2.zip

windows10-2004-x64

1

PvZWidescr...es.exe

windows7-x64

1

PvZWidescr...es.exe

windows10-2004-x64

6

PvZWidescr...ss.dll

windows7-x64

1

PvZWidescr...ss.dll

windows10-2004-x64

1

PvZWidescr...la.txt

windows7-x64

1

PvZWidescr...la.txt

windows10-2004-x64

1

PvZWidescr...in.pak

windows7-x64

PvZWidescr...in.pak

windows10-2004-x64

PvZWidescr...er.xml

windows7-x64

1

PvZWidescr...er.xml

windows10-2004-x64

3

PvZWidescr...ml.sig

windows7-x64

PvZWidescr...ml.sig

windows10-2004-x64

PvZWidescr...go.jpg

windows7-x64

3

PvZWidescr...go.jpg

windows10-2004-x64

PvZWidescr...en.exe

windows7-x64

1

PvZWidescr...en.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    15-07-2023 19:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PvZWidescreen_1.1.2/eula.txt

  • Size

    9KB

  • MD5

    12eeee860c6e913c33d8c27436f9f4b3

  • SHA1

    4a499dae204f73b5bf5d48576015e9a557a59d81

  • SHA256

    2a1c392e55e5286fcd396deacbc8a12ae65c849f264a507ead08fd7291cce116

  • SHA512

    355f72b683eb6df269f6ebb962392570f4802662901876b2abe90dc630b42cae11abec45e7a7d1f6d8568653d54bd8172b5061570ca1b536fb2377f79cd5ba48

  • SSDEEP

    192:FFvbHtBl/WLgpPEpV3mZ/jhfKJWoKSNUumEsMnPMyrxW3:fb3igV29jJ7CAnPMyrxW3

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\PvZWidescreen_1.1.2\eula.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads