80f3d09c8da6a063b87cb75b758f13dcce3999396cd4d745ffbd87997249ad75 | Triage

Resubmissions

02/08/2024, 19:42

240802-yeqptsxcrp 9

02/08/2024, 19:39

240802-ydek6sscra 3

Analysis

max time kernel
121s
max time network
132s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
02/08/2024, 19:39

Sharing

Report Analysis Logs

General

Target

Language/bn.txt
Size

14KB
MD5

d0e788f64268d15b4391f052b1f4b18a
SHA1

2fd8e0a9dd22a729d578536d560354c944c7c93e
SHA256

216cc780e371dc318c8b15b84de8a5ec0e28f712b3109a991c8a09cddaa2a81a
SHA512

d50ea673018472c17db44b315f4c343a2924a2eaa95c668d1160aa3830533ca37cc13c2067911a0756f1be8c41df45669abe083759dcb9436f98e90cbb6ac8bf
SSDEEP

192:iM+g4O23sZEstg+lTr++0Mx148IiZaXTXEU10bXYc+4/rexX4:iMyc2stg+lTr++0MQ8DZRDYc+4axI

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs

pid	Process
1640	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Language\bn.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads