3f53d585d9b51eae97f25bd566ef4cf5146fcac8aeefdced8f3786c2c1ef2693 | Triage

Resubmissions

15/03/2024, 11:33

240315-npa21shd64 1

15/03/2024, 11:30

240315-nl4vxsfb7y 1

15/03/2024, 11:20

240315-nfyfysfa4w 1

15/03/2024, 11:16

240315-nc6m6ahb54 1

15/03/2024, 11:07

240315-m762qseg7x 1

15/03/2024, 11:03

240315-m5tcvseg2z 1

15/03/2024, 11:01

240315-m43j5seg2s 1

15/03/2024, 10:54

240315-mzm9nagg58 1

Analysis

max time kernel
121s
max time network
123s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
15/03/2024, 10:54

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

threats_montenegro.txt
Size

366B
MD5

54ee4f7d51703530a2b3f02b266f1f60
SHA1

b1adbb16b6297edd551bb7e2e2d0090cc01fb751
SHA256

c457892a9dfebf175d6b0accb35ac0a5b59f73aa7d8ef15b31c83c470af6101f
SHA512

a216f0c6e256dd4f5ab3701057dfeebde824417658eab3042abf12aa1578c220678b6fb4dd203b7d98e236c5d95884ccd6fe6033286ae1b334cd898274e986f7

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs

pid	Process
2472	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\threats_montenegro.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:2472

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads