c0dfa51657d72d26ab58594bca7fd35e6e41e57085436974efd4ffd25e4445b8 | Triage

Resubmissions

31/10/2023, 07:12

231031-h1xr9shb9w 6

31/10/2023, 07:09

231031-hy68xsbc69 6

31/10/2023, 07:01

231031-htdqtabc49 6

Analysis

max time kernel
135s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
31/10/2023, 07:01

Sharing

Report Analysis Logs

General

Target

HideUL/HideUL.ini
Size

28KB
MD5

b187eef4473a84c50a8150947578e7b3
SHA1

1f9f5b4f57719ce3fae59ee4911ed8b3e459ce9e
SHA256

dbeefd5c4ed7dbe827715e05d990107a4c8bd69fc6c0a6c0715cf6aca561aca6
SHA512

de7cfab9d167d979138b66d29c073370386b1d368c71ca0e2af9c38914b36d8b34df624c6d144ab223c06f4c6d703e7922bf8b9e6849a5ad9dad79f502b053d0
SSDEEP

384:Z9/n12mHkYfQFlFOCGFfhqYEu06eWBKP5+Ss:ZJ1pHdQFlFOCGFfhqYEu06eWB4ns

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs

pid	Process
2976	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\HideUL\HideUL.ini
1⤵
- Opens file in notepad (likely ransom note)
PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads