Overview

overview

10

Static

static

3

wufuc_v1.0...d4.zip

windows7-x64

1

wufuc/COPYING.txt

windows7-x64

1

wufuc/Donate.url

windows7-x64

6

wufuc/Help...se.url

windows7-x64

1

wufuc/Help...ue.url

windows7-x64

1

wufuc/Rest...rv.reg

windows7-x64

10

wufuc/inst...uc.bat

windows7-x64

1

wufuc/unin...uc.bat

windows7-x64

1

wufuc/version.txt

windows7-x64

1

wufuc/wufu...ub.url

windows7-x64

1

wufuc/wufuc32.dll

windows7-x64

1

wufuc/wufuc64.dll

windows7-x64

1

wufuc/wufu...sk.xml

windows7-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-04-2024 07:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    wufuc/version.txt

  • Size

    21B

  • MD5

    b419a11ee4ca30e940a2c24d07637902

  • SHA1

    3b5d68ce3996e32abe19af6b3a8f6d39a97f7c39

  • SHA256

    64e5d99d87351823ef7c6eb19752a8e8109460509ae3710b45372a38672019bf

  • SHA512

    55e2fd9023bdb5d39a50d1c3dda4b3b9f82bf0a7f025f73be1e2244a7c129e18ec894b69b2e2ded49a27014bd563ef7a93f8b05e9f7562b0b54ed4a7378d0461

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\wufuc\version.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:1412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads