Overview

overview

5

Static

static

5

Adobe GenP... 4.zip

windows7-x64

1

Adobe GenP... 4.zip

windows10-2004-x64

1

AdobeGenP-....4.exe

windows7-x64

1

AdobeGenP-....4.exe

windows10-2004-x64

1

NSudoLG.exe

windows7-x64

1

NSudoLG.exe

windows10-2004-x64

1

config.ini

windows7-x64

1

config.ini

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/07/2024, 20:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    config.ini

  • Size

    6KB

  • MD5

    b0c34cc14886b2bd2f72b56957c55a66

  • SHA1

    2e9f8c655a11e5710c16a7ef0b172e2708957575

  • SHA256

    1277dd76c6f9770a3dda70c8f425fb1dbd72dd629726da36b842cdf0ba2b2c7e

  • SHA512

    f21e9d40f13a30ac651b864d7b5630286105d02769cfd63e8ae7be7fea6a04c819a2d56205d5e9815225757fa16272b3548d832757e7a83ced6513aafb1766e6

  • SSDEEP

    192:GNS3D/+TvcgBPcJvcgBu6F0VBotrjTZv2ctKWm8hJ4bI:GNSTmTvcgVevcgOIl2ctKWm8hJUI

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\config.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:4324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads