Analysis
-
max time kernel
361s -
max time network
1588s -
platform
windows10-1703_x64 -
resource
win10-20240404-en -
resource tags
arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system -
submitted
02-06-2024 14:08
Behavioral task
behavioral1
Sample
executor.zip
Resource
win10-20240404-en
0 signatures
1800 seconds
Behavioral task
behavioral2
Sample
executor/STARTTHIS.exe
Resource
win10-20240404-en
8 signatures
1800 seconds
Behavioral task
behavioral3
Sample
9M2��.pyc
Resource
win10-20240404-en
0 signatures
1800 seconds
Behavioral task
behavioral4
Sample
executor/config.txt
Resource
win10-20240404-en
1 signatures
1800 seconds
General
-
Target
executor/config.txt
-
Size
106B
-
MD5
6a1ede6d9070bfe8f9cca12ec4153546
-
SHA1
a2716398759b09d38ef6a358756cf881d34d0c19
-
SHA256
df020682a9fffffc677ec5e143837c7c8459c8f9db14899b0ac8c2bc03a515f7
-
SHA512
b71255fd4e1a7bf4025ccd171f4d8cf317b4988e6f1cfa62f595180a66f9c4073fd22d06f76fc7b209d77b0163206ab75988c243922b77c1110c584aef1100de
Score
1/10
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
Processes:
NOTEPAD.EXEpid process 4024 NOTEPAD.EXE