d4457d9d3bb89b2395e6c841ddefada9bb067bcf51fc75bb4413d57d87b7a7cd | Triage

Analysis

max time kernel
145s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
11/02/2024, 12:42

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

notepad.exe
Size

1.2MB
MD5

5af6de4390ba17649fd55624e4a2d73e
SHA1

14fac7492a1426b49ea716f8f81e5cc1c581ee3f
SHA256

d4457d9d3bb89b2395e6c841ddefada9bb067bcf51fc75bb4413d57d87b7a7cd
SHA512

a30d4733be3e79852f8b96f2a975c852f259ec2d6a9b8bbc774e3492bdce749e11574a7d26743603dbad76d8c34ae9863de7944fa1ba2db6b2e0a6b6257a85eb
SSDEEP

24576:21zx6qnt0RVEyxHFply0jM3azzHsAt+3lkZ8h/vBjGSLBrnAE:21z4q2R/NysLYBVLJnR

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\Fonts\linedraw.ttf	notepad.exe
File created	C:\Windows\Fonts\linedraw.ttf	notepad.exe

C:\Users\Admin\AppData\Local\Temp\notepad.exe
"C:\Users\Admin\AppData\Local\Temp\notepad.exe"
1⤵
- Drops file in Windows directory
PID:1584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\linedraw.ttf

Filesize
78KB

MD5
b1c3f0b95a1824783d7ea6ba644056a8

SHA1
0def5d325789f5e24d758160ee1f9755b61fe052

SHA256
cef762b628e01e4e938dce6d8279800cc8e20af1218cadc0afbdb9083cdb349b

SHA512
8b927128bab643d3c737723db81f981c0c82eeae34b3174033c4b851e9dff7e1e8684745e3358fd9099a849713cd819cb6fed9ab198af50c5b01cc4437e99eaf

Download Submit