8ded9a82ff038ff7efdb0f26de3bf8c21a8b8864ea6af72321f27ac68a578a5b

Submit
Reports

Overview

overview

Static

static

7.5 - @LOG...#4.rar

windows10-1703-x64

BR_128.201...st.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201...fo.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201... 1.txt

windows10-1703-x64

BR_128.201...st.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201... 1.txt

windows10-1703-x64

BR_128.201... 2.txt

windows10-1703-x64

BR_128.201... 3.txt

windows10-1703-x64

BR_128.201... 4.txt

windows10-1703-x64

BR_128.201... 6.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201... 1.txt

windows10-1703-x64

BR_128.201... 2.txt

windows10-1703-x64

BR_128.201... 3.txt

windows10-1703-x64

BR_128.201... 4.txt

windows10-1703-x64

BR_128.201...fo.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201... 1.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201...st.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201... 1.txt

windows10-1703-x64

BR_128.201... 2.txt

windows10-1703-x64

BR_128.201... 3.txt

windows10-1703-x64

BR_128.201...lt.txt

windows10-1703-x64

BR_128.201...le.txt

windows10-1703-x64

BR_128.201... 1.txt

windows10-1703-x64

Analysis

max time kernel
147s
max time network
182s
platform
windows10-1703_x64
resource
win10-20230703-en
resource tags

arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system
submitted
19-07-2023 08:47

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7.5 - @LOGS_CENTER #4.rar

Resource

win10-20230703-en

persistence

windows10-1703-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

BR_128.201.41.41_2023_06_22_23_48_50/cookie_list.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

BR_128.201.41.41_2023_06_22_23_48_50/cookies/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

BR_128.201.41.41_2023_06_22_23_48_50/history/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

BR_128.201.41.41_2023_06_22_23_48_50/system_info.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

BR_128.201.76.105_2023_06_27_00_34_21/autofill/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

BR_128.201.76.105_2023_06_27_00_34_21/autofill/Google Chrome_Profile 1.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookie_list.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookies/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookies/Google Chrome_Profile 1.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookies/Google Chrome_Profile 2.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookies/Google Chrome_Profile 3.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookies/Google Chrome_Profile 4.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

BR_128.201.76.105_2023_06_27_00_34_21/cookies/Google Chrome_Profile 6.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

BR_128.201.76.105_2023_06_27_00_34_21/history/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

BR_128.201.76.105_2023_06_27_00_34_21/history/Google Chrome_Profile 1.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

BR_128.201.76.105_2023_06_27_00_34_21/history/Google Chrome_Profile 2.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

BR_128.201.76.105_2023_06_27_00_34_21/history/Google Chrome_Profile 3.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

BR_128.201.76.105_2023_06_27_00_34_21/history/Google Chrome_Profile 4.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

BR_128.201.76.105_2023_06_27_00_34_21/system_info.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

BR_128.201.79.83_2023_06_25_19_14_48/autofill/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

BR_128.201.79.83_2023_06_25_19_14_48/autofill/Google Chrome_Profile 1.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

BR_128.201.79.83_2023_06_25_19_14_48/autofill/Microsoft Edge_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cc/Microsoft Edge_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookie_list.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookies/Google Chrome_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookies/Google Chrome_Profile 1.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookies/Google Chrome_Profile 2.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookies/Google Chrome_Profile 3.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookies/Microsoft Edge_Default.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

BR_128.201.79.83_2023_06_25_19_14_48/cookies/Opera Stable.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

BR_128.201.79.83_2023_06_25_19_14_48/history/Google Chrome_Profile 1.txt

Resource

win10-20230703-en

windows10-1703-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

BR_128.201.41.41_2023_06_22_23_48_50/cookies/Google Chrome_Default.txt
Size

20KB
MD5

a5a6055fe4f4f05c4924f2718371389e
SHA1

5e5f197da2947e0a00c4441c5ca2aedb2b182486
SHA256

424262dfceb1dcc276bbd14b1ec75aecbfac61ea3cd9ae51f0caa863efa2e77c
SHA512

698fec8f59b6cb303876acf59cc6731c276981db716a2151d12a6474a5e2f08e8f181d89860716330d1db6882d2f125d54c99eaf2507fd540aac01b8378de049
SSDEEP

384:dtZleawuilfh7z9ipWs9xCebdS0mjrx4rSY7bB8:/Znwu0h7z4Yeg0Wrx4rSY7bG

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs

ransomware

pid	Process
688	NOTEPAD.EXE

Processes

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE "C:\Users\Admin\AppData\Local\Temp\BR_128.201.41.41_2023_06_22_23_48_50\cookies\Google Chrome_Default.txt"
1⤵
- Opens file in notepad (likely ransom note)
PID:688

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:1492

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads