Overview
overview
9Static
static
7sapphire_cracked.rar
windows7-x64
3sapphire_cracked.rar
windows10-2004-x64
config.toml
windows7-x64
3config.toml
windows10-2004-x64
3crack.dll
windows7-x64
9crack.dll
windows10-2004-x64
9data/asset...g.json
windows7-x64
3data/asset...g.json
windows10-2004-x64
3data/asset...d.json
windows7-x64
3data/asset...d.json
windows10-2004-x64
3loader.exe
windows7-x64
9loader.exe
windows10-2004-x64
9main.exe
windows7-x64
7main.exe
windows10-2004-x64
7output/fil...ha.txt
windows7-x64
1output/fil...ha.txt
windows10-2004-x64
1output/fil...id.txt
windows7-x64
1output/fil...id.txt
windows10-2004-x64
1Analysis
-
max time kernel
121s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
22-05-2024 07:38
Behavioral task
behavioral1
Sample
sapphire_cracked.rar
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
sapphire_cracked.rar
Resource
win10v2004-20240426-en
Behavioral task
behavioral3
Sample
config.toml
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
config.toml
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
crack.dll
Resource
win7-20231129-en
Behavioral task
behavioral6
Sample
crack.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
data/assets/config.json
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
data/assets/config.json
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
data/assets/soundboard.json
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
data/assets/soundboard.json
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
loader.exe
Resource
win7-20240508-en
Behavioral task
behavioral12
Sample
loader.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral13
Sample
main.exe
Resource
win7-20240419-en
Behavioral task
behavioral14
Sample
main.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
output/filter/captcha.txt
Resource
win7-20240508-en
Behavioral task
behavioral16
Sample
output/filter/captcha.txt
Resource
win10v2004-20240508-en
Behavioral task
behavioral17
Sample
output/filter/invalid.txt
Resource
win7-20240215-en
Behavioral task
behavioral18
Sample
output/filter/invalid.txt
Resource
win10v2004-20240426-en
General
-
Target
output/filter/captcha.txt
-
Size
12KB
-
MD5
199f1f87360a90d73ceff39bcc291437
-
SHA1
64a070a18fe52ff77b34f9ce761106d2792e12b4
-
SHA256
0228c294e43ff45577961730238a472cce7fcf607deb17c593d426fa3b05d958
-
SHA512
6588f9770c5e80a1a803b82e389e6ad36d3fac0899b05fe66ef8ecc396d5b805538f00d96872666d1d127bcb41783de0bb626dcc832fd06d5f5bf150ef94a5a9
-
SSDEEP
192:zPJVFVcjv4OAeiIr1H/h8jvrKSAPJ/8HEcatF:zPJVFVcjQvDm+j2bPjVF
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
Processes:
NOTEPAD.EXEpid process 1928 NOTEPAD.EXE