Overview

overview

6

Static

static

3

TerrariaFI...ix.dll

windows7-x64

1

TerrariaFI...ix.dll

windows10-2004-x64

1

TerrariaFI...ix.ini

windows7-x64

1

TerrariaFI...ix.ini

windows10-2004-x64

1

TerrariaFI...ix.url

windows7-x64

6

TerrariaFI...ix.url

windows10-2004-x64

6

TerrariaFI...IS.url

windows7-x64

1

TerrariaFI...IS.url

windows10-2004-x64

1

TerrariaFI...pi.dll

windows7-x64

1

TerrariaFI...pi.dll

windows10-2004-x64

1

TerrariaFI...pi.dll

windows7-x64

1

TerrariaFI...pi.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    100s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17/05/2024, 18:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    TerrariaFIX.V2/OnlineFix.ini

  • Size

    4KB

  • MD5

    f0739c9b20b0c32df1ebe1f70262d4a0

  • SHA1

    6b1045a9144d18da2032dfa45edbd086b15071cf

  • SHA256

    2778cc0a1891975dab80931c74f045f198d7b6b1019f04e1ef296ba75acaf88c

  • SHA512

    5a07d172208af503b1ee5a14f965723f34e2a987cf742f6a727674af1eadaf9d81ab10a97787e293b197dc67763ca44bf05f036141059a87f54feb6ce6b3417c

  • SSDEEP

    96:PN4laNjljw4O4bgdd2HmI98A/W+0/kW73/UprF+x4q4+sHHuxMKnip:RNjljw4ODd2HWD/L74rIWL+6HuiKip

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\TerrariaFIX.V2\OnlineFix.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads