Overview
overview
10Static
static
9qL7tumRgxLj.zip
windows7-x64
1qL7tumRgxLj.zip
windows10-2004-x64
1README.txt
windows7-x64
1README.txt
windows10-2004-x64
1openMe.rar
windows7-x64
3openMe.rar
windows10-2004-x64
3Boostrap/Solara X.exe
windows7-x64
10Boostrap/Solara X.exe
windows10-2004-x64
10$TEMP/Animated
windows7-x64
1$TEMP/Animated
windows10-2004-x64
1$TEMP/Bennett
windows7-x64
1$TEMP/Bennett
windows10-2004-x64
1$TEMP/Broker
windows7-x64
1$TEMP/Broker
windows10-2004-x64
1$TEMP/Dell
windows7-x64
1$TEMP/Dell
windows10-2004-x64
1$TEMP/Departments
windows7-x64
1$TEMP/Departments
windows10-2004-x64
1$TEMP/Grow
windows7-x64
1$TEMP/Grow
windows10-2004-x64
1$TEMP/Implementing
windows7-x64
1$TEMP/Implementing
windows10-2004-x64
1$TEMP/Int
windows7-x64
1$TEMP/Int
windows10-2004-x64
1$TEMP/Invalid
windows7-x64
1$TEMP/Invalid
windows10-2004-x64
1$TEMP/Italiano
windows7-x64
1$TEMP/Italiano
windows10-2004-x64
1$TEMP/Jd
windows7-x64
1$TEMP/Jd
windows10-2004-x64
1$TEMP/Latitude
windows7-x64
1$TEMP/Latitude
windows10-2004-x64
1Analysis
-
max time kernel
149s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
19-06-2024 08:53
Behavioral task
behavioral1
Sample
qL7tumRgxLj.zip
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
qL7tumRgxLj.zip
Resource
win10v2004-20240611-en
Behavioral task
behavioral3
Sample
README.txt
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
README.txt
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
openMe.rar
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
openMe.rar
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
Boostrap/Solara X.exe
Resource
win7-20240611-en
Behavioral task
behavioral8
Sample
Boostrap/Solara X.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
$TEMP/Animated
Resource
win7-20231129-en
Behavioral task
behavioral10
Sample
$TEMP/Animated
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
$TEMP/Bennett
Resource
win7-20240611-en
Behavioral task
behavioral12
Sample
$TEMP/Bennett
Resource
win10v2004-20240226-en
Behavioral task
behavioral13
Sample
$TEMP/Broker
Resource
win7-20240220-en
Behavioral task
behavioral14
Sample
$TEMP/Broker
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
$TEMP/Dell
Resource
win7-20240508-en
Behavioral task
behavioral16
Sample
$TEMP/Dell
Resource
win10v2004-20240611-en
Behavioral task
behavioral17
Sample
$TEMP/Departments
Resource
win7-20240419-en
Behavioral task
behavioral18
Sample
$TEMP/Departments
Resource
win10v2004-20240611-en
Behavioral task
behavioral19
Sample
$TEMP/Grow
Resource
win7-20240611-en
Behavioral task
behavioral20
Sample
$TEMP/Grow
Resource
win10v2004-20240611-en
Behavioral task
behavioral21
Sample
$TEMP/Implementing
Resource
win7-20240508-en
Behavioral task
behavioral22
Sample
$TEMP/Implementing
Resource
win10v2004-20240611-en
Behavioral task
behavioral23
Sample
$TEMP/Int
Resource
win7-20240508-en
Behavioral task
behavioral24
Sample
$TEMP/Int
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
$TEMP/Invalid
Resource
win7-20240611-en
Behavioral task
behavioral26
Sample
$TEMP/Invalid
Resource
win10v2004-20240226-en
Behavioral task
behavioral27
Sample
$TEMP/Italiano
Resource
win7-20240508-en
Behavioral task
behavioral28
Sample
$TEMP/Italiano
Resource
win10v2004-20240611-en
Behavioral task
behavioral29
Sample
$TEMP/Jd
Resource
win7-20240508-en
Behavioral task
behavioral30
Sample
$TEMP/Jd
Resource
win10v2004-20240508-en
Behavioral task
behavioral31
Sample
$TEMP/Latitude
Resource
win7-20240611-en
Behavioral task
behavioral32
Sample
$TEMP/Latitude
Resource
win10v2004-20240611-en
General
-
Target
README.txt
-
Size
17B
-
MD5
3ddd4ab42a9f89735bb14dadf6d593d7
-
SHA1
a6addc3240f39b5a4252fff6a41d565a295f2c61
-
SHA256
dafec9ca2e314e02dafa5a824e14cd8df64cafb3df0246282d0402f9ca713063
-
SHA512
656849caf13910350835ce00d272d91af0dae6c6419cd7723b8e79d573bd62ddcbdf1b3772fb8764998c61367cf467c000666665e53150e4511589eab895151a
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
Processes:
NOTEPAD.EXEpid process 4592 NOTEPAD.EXE