Analysis
-
max time kernel
131s -
max time network
145s -
platform
windows10-1703_x64 -
resource
win10-20240404-en -
resource tags
arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system -
submitted
10/05/2024, 17:51
Behavioral task
behavioral1
Sample
Devotion.rar
Resource
win10-20240404-en
12 signatures
150 seconds
Behavioral task
behavioral2
Sample
Devotion.exe
Resource
win10-20240404-en
3 signatures
150 seconds
Behavioral task
behavioral3
Sample
Devotion.pyc
Resource
win10-20240404-en
3 signatures
150 seconds
Behavioral task
behavioral4
Sample
READ ME.md
Resource
win10-20240404-en
3 signatures
150 seconds
Behavioral task
behavioral5
Sample
blacklist.txt
Resource
win10-20240404-en
1 signatures
150 seconds
General
-
Target
blacklist.txt
-
Size
18B
-
MD5
a350df82b625a947ffec3d8e887e47c6
-
SHA1
5446926cd942c1b61265bc777ca19c43c635cafe
-
SHA256
6eb52b811c8f674b9f5eddfea1898667de5a0357030af2be063fd7374684b71b
-
SHA512
5822ef77f753771acdd4b84d76ffa10f7d943cb5c5346539c1e04fc8a5cf9827357995bfef1e3415e8afe4732d811a3e948f936f63354d583f8cf7ded6e7e235
Score
1/10
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
pid Process 3700 NOTEPAD.EXE