71279dd8ec1b3102414f4006f9bd444a5a5b732a13d656b06a37928371e3d446

Analysis

max time kernel
133s
max time network
267s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
07/11/2023, 06:53

Target

browscap.ini
Size

304KB
MD5

378be809df7d15aac75a175693e25fbb
SHA1

2d5454e161de8a5b65910f27bd70d9d0ad8fa476
SHA256

4ddd50f31fb968f30bedefc253a46dc3f2890192d05cdaa9e0a64a056eee807e
SHA512

d0d181e806cbd2c016eb0a8786f7d9db877463eaac0195db4e891be111c9ed87491a1abcfa0d9ed7c2743e004e1f4a3f4789333d0b535e63358c672ae833c363
SSDEEP

1536:D+dN5JLXlU4XteKJeYPMxBUm9huPj3bkeoO3cTKr0AzhjRzi0v5XfDlVlvr778BN:DYPEBOPjLkeOTA0AzhJMutEbbt0oK7M

Score

1^/10

Opens file in notepad (likely ransom note) 1 IoCs

pid	Process
2180	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\browscap.ini
1⤵
- Opens file in notepad (likely ransom note)
PID:2180