Overview

overview

7

Static

static

1

[Guru3D.co...er.zip

windows7-x64

1

[Guru3D.co...er.zip

windows10-2004-x64

1

Guru3D.com...om.txt

windows7-x64

1

Guru3D.com...om.txt

windows10-2004-x64

1

Guru3D.com/guru3d.url

windows7-x64

1

Guru3D.com/guru3d.url

windows10-2004-x64

3

MSIAfterbu...64.exe

windows7-x64

7

MSIAfterbu...64.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    130s
  • max time network
    140s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    30-08-2023 09:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Guru3D.com/downloaded_from_www.guru3d.com.txt

  • Size

    52B

  • MD5

    974220e172c502b31ed3053836da0d84

  • SHA1

    d25dc6bcb8e1967591cd4122f5e652e5abe9b237

  • SHA256

    652049e848c7b9cab308470a21f75fb068bf4e1e189fda09385e1ed5bd0237ec

  • SHA512

    4cc003dfcb38d6bef62f9d6ce8e8a7ede8f8e09078c3fbb4dc17dfaf897cc840568fb241d6b564434de98488c3636e5f5174c93da07bfa5c82686862ffaa6a30

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Guru3D.com\downloaded_from_www.guru3d.com.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads