Overview

overview

6

Static

static

3

SteamSetup.exe

windows10-1703-x64

6

$PLUGINSDI...er.bmp

windows10-1703-x64

4

$PLUGINSDI...rd.bmp

windows10-1703-x64

4

public/ste...an.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...ch.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...ch.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...ch.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...ek.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...se.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...na.txt

windows10-1703-x64

1

public/ste...am.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...se.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

public/ste...se.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...se.txt

windows10-1703-x64

1

public/ste...ai.txt

windows10-1703-x64

1

public/ste...sh.txt

windows10-1703-x64

1

public/ste...an.txt

windows10-1703-x64

1

uninstall.exe

windows10-1703-x64

1

Analysis

  • max time kernel
    36s
  • max time network
    41s
  • platform
    windows10-1703_x64
  • resource
    win10-20231215-en
  • resource tags

    arch:x64arch:x86image:win10-20231215-enlocale:en-usos:windows10-1703-x64system
  • submitted
    11/02/2024, 12:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    public/steambootstrapper_spanish.txt

  • Size

    4KB

  • MD5

    e9b8fccdb78bf9d275b79c75b2ff3e7b

  • SHA1

    4b549411ed4db0f0a3699e76531353c226b06a76

  • SHA256

    41ecfe0ffd6043a66a41bf9ea032712f2d1bbc19b434c6c666a107ee379f21e4

  • SHA512

    4ce905a31f3a410712722271abd7e0a9a6c43646b61a321912b4a8e8f6fab68ab69add1d701c501bb069b8ecb65ecaf3bfa9be983933d0234a8c81c24bc6601f

  • SSDEEP

    96:pFDhCIRRcJ3NkrHRZYGerQrmermz+Ejp6lLSG+oIq2K/+oIq2vgKOo8348o06:rsISbSrYrybSZYlEzKazv938o8o06

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\public\steambootstrapper_spanish.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:3920

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads