b7642a6b4604a036661c77e129d89794023dcab97b3f77a73dbad356fe61d9ad

Analysis

max time kernel
147s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
14-06-2024 13:07

Target

Licenses.txt
Size

131KB
MD5

bfe80d65cc4a7f039156a5d7bb258f58
SHA1

d4b9c2fb2dba70e5208ee3eb84cdb55a74858fdc
SHA256

a8b01bfc0898b04d2027af87d0594bc901cf97766ae1101272463750217ab6d7
SHA512

c0bce0daa8932f60db2c13a5b1f1cef329da56eb0e51d8ee617dc12ca0e8b2867f50deefb6ebe6205da3ec947342793f7134a21bad77854fd80b5d1f79fb838c
SSDEEP

3072:UcEz0K0y/BT05qyd9AKCTWwgERcXikPpsPOb1SiVoXiBPyPe9KiziRibigJiHRXA:UcEhBydQWwgERcdPpsPOb1Ro4PyPe9zr

Score

1^/10

Opens file in notepad (likely ransom note) 1 IoCs

pid	Process
1972	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Licenses.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:1972