Overview

overview

7

Static

static

3

SMM_WE.7z

windows7-x64

3

SMM_WE.7z

windows10-2004-x64

3

SMM_WE/bgm...ar.ogg

windows7-x64

1

SMM_WE/bgm...ar.ogg

windows10-2004-x64

7

SMM_WE/bgm...ar.ogg

windows7-x64

1

SMM_WE/bgm...ar.ogg

windows10-2004-x64

7

SMM_WE/bgm...le.ogg

windows7-x64

1

SMM_WE/bgm...le.ogg

windows10-2004-x64

7

SMM_WE/data.win

windows7-x64

3

SMM_WE/data.win

windows10-2004-x64

3

SMM_WE/font_as.ttf

windows7-x64

3

SMM_WE/font_as.ttf

windows10-2004-x64

7

SMM_WE/fontcjk.ttf

windows7-x64

3

SMM_WE/fontcjk.ttf

windows10-2004-x64

7

SMM_WE/options.ini

windows7-x64

1

SMM_WE/options.ini

windows10-2004-x64

1

SMM_WE/snd_1up.ogg

windows7-x64

1

SMM_WE/snd_1up.ogg

windows10-2004-x64

7

SMM_WE/snd_DSM_1.ogg

windows7-x64

1

SMM_WE/snd_DSM_1.ogg

windows10-2004-x64

7

SMM_WE/snd_DSM_2.ogg

windows7-x64

1

SMM_WE/snd_DSM_2.ogg

windows10-2004-x64

7

SMM_WE/snd_DSM_3.ogg

windows7-x64

1

SMM_WE/snd_DSM_3.ogg

windows10-2004-x64

7

SMM_WE/snd_DSM_4.ogg

windows7-x64

1

SMM_WE/snd_DSM_4.ogg

windows10-2004-x64

7

SMM_WE/snd...ns.ogg

windows7-x64

1

SMM_WE/snd...ns.ogg

windows10-2004-x64

7

SMM_WE/snd...al.ogg

windows7-x64

1

SMM_WE/snd...al.ogg

windows10-2004-x64

7

SMM_WE/snd...in.ogg

windows7-x64

1

SMM_WE/snd...in.ogg

windows10-2004-x64

7

Resubmissions

11-08-2024 12:15

240811-pfbgvstblg 7

Analysis

  • max time kernel
    60s
  • max time network
    71s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28-01-2024 08:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SMM_WE/options.ini

  • Size

    172B

  • MD5

    06c19f2910a6a55d5d326cba5e9a73a2

  • SHA1

    cb5f47877a4084de1d1424af5d9a9ef73a679bb2

  • SHA256

    12956fe9cc78e872e0ff933a9e858027496eb9f0b6c96ef56cc6241f8ab052e2

  • SHA512

    b1a2ef7c8283b5382d8a6beb129f43315de49912284a3d595d8d8565ee1062369645260e7359ff76fcb04610b8f98e6835846389c9b42242c37cf71d8ec41eaa

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\SMM_WE\options.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:3828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads