Analysis
-
max time kernel
49s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
25-01-2024 15:38
Static task
static1
Behavioral task
behavioral1
Sample
nlinjector.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
nlinjector.exe
Resource
win10v2004-20231215-en
Behavioral task
behavioral3
Sample
nvrls_build.dll
Resource
win7-20231129-en
Behavioral task
behavioral4
Sample
nvrls_build.dll
Resource
win10v2004-20231222-en
Behavioral task
behavioral5
Sample
readme.txt
Resource
win7-20231215-en
General
-
Target
readme.txt
-
Size
559B
-
MD5
38c00bafca1039eedfab0fb4a0ee5428
-
SHA1
1af7bb5aef4038097aebe3c8c678ba98326d0af2
-
SHA256
d273195333cad57c9b94956ec678277872ab38f84d12f38d6305a635f487cd2d
-
SHA512
488a42c12c0e4fc8da3cce482af29546043c54298dea3ef2394dd61c29638c471baf47c4e287c36e940e4039b42cd30ce6842d781edcc4208266395b874a295f
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
Processes:
NOTEPAD.EXEpid process 1668 NOTEPAD.EXE