Overview

overview

10

Static

static

10

IDA Pro 8....64).7z

windows7-x64

3

IDA Pro 8....64).7z

windows10-2004-x64

3

IDA/til/pp...dk.til

windows7-x64

3

IDA/til/pp...dk.til

windows10-2004-x64

3

IDA/til/sp...rc.til

windows7-x64

3

IDA/til/sp...rc.til

windows10-2004-x64

3

IDA/til/xn...64.til

windows7-x64

3

IDA/til/xn...64.til

windows10-2004-x64

3

IDA/til/xn...86.til

windows7-x64

3

IDA/til/xn...86.til

windows10-2004-x64

3

IDA/til/xn...64.til

windows7-x64

3

IDA/til/xn...64.til

windows10-2004-x64

3

IDA/til/xn...64.til

windows7-x64

3

IDA/til/xn...64.til

windows10-2004-x64

3

cracked/ida.key

windows7-x64

3

cracked/ida.key

windows10-2004-x64

3

cracked/idacfg.ini

windows7-x64

1

cracked/idacfg.ini

windows10-2004-x64

1

cracked/secur32.dll

windows7-x64

1

cracked/secur32.dll

windows10-2004-x64

1

cracked/sr...ll.sln

windows7-x64

3

cracked/sr...ll.sln

windows10-2004-x64

3

cracked/sr...ydll.c

windows7-x64

3

cracked/sr...ydll.c

windows10-2004-x64

3

cracked/sr...ydll.h

windows7-x64

3

cracked/sr...ydll.h

windows10-2004-x64

3

cracked/sr...dll.rc

windows7-x64

3

cracked/sr...dll.rc

windows10-2004-x64

3

cracked/sr...cxproj

windows7-x64

3

cracked/sr...cxproj

windows10-2004-x64

3

cracked/sr...ilters

windows7-x64

3

cracked/sr...ilters

windows10-2004-x64

3

Analysis

  • max time kernel
    82s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-08-2024 22:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cracked/idacfg.ini

  • Size

    1KB

  • MD5

    0c2fa0524a19dd4f624461331d0840ad

  • SHA1

    88ed57a3bb18092543da4e5b68a0b18cb18632ca

  • SHA256

    af0b6489255ed81adf89d2ca2b5c6ced767d5023ab0dd32d97bf7e462d04e89e

  • SHA512

    0fbaea1566ed389b3b5b70bf988a85704b2656fc770f4b042a6a11bd1ec1c657c6a62fff13d1aa63ad9ba2edf0e89eacc544c239dcb4b5ca2fd8b14ef2f41192

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\cracked\idacfg.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:4192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads