Overview

overview

10

Static

static

10

whar.zip

windows7-x64

1

whar.zip

windows10-2004-x64

1

Discord.AIO.exe

windows7-x64

10

Discord.AIO.exe

windows10-2004-x64

10

webhook.txt

windows7-x64

1

webhook.txt

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16-07-2023 13:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    webhook.txt

  • Size

    121B

  • MD5

    708baa6bc58100411cbbf1d81a5cbb8c

  • SHA1

    8bd67ffc16e264e4565216cb292169b947a45be4

  • SHA256

    b61bafeb0f7306246bf2923f3cb18ea103eb66ca195944ad43f0b188c0153538

  • SHA512

    aed11c3c2493c35260157146d2e7e57ff5b409c11b31741040297b8c9050de3cfadd964b72b90a518c67391256aba25979ef45be10668e68544fcc0f5d25009f

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\webhook.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:4716

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads