Overview

overview

3

Static

static

1

Browser/cc's.txt

windows7-x64

1

Browser/cc's.txt

windows10-2004-x64

1

Browser/cookies.txt

windows7-x64

1

Browser/cookies.txt

windows10-2004-x64

1

Browser/history.txt

windows7-x64

1

Browser/history.txt

windows10-2004-x64

1

Browser/passwords.txt

windows7-x64

1

Browser/passwords.txt

windows10-2004-x64

1

Clipboard/...rd.txt

windows7-x64

1

Clipboard/...rd.txt

windows10-2004-x64

1

Common Fil...wda.js

windows7-x64

3

Common Fil...wda.js

windows10-2004-x64

3

Analysis

  • max time kernel
    12s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/08/2024, 15:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Browser/cookies.txt

  • Size

    63KB

  • MD5

    2c52dcd4115e4c5b8bd9911ab5f32758

  • SHA1

    63c7b545f473cebe69e4655e8010dd647d59b642

  • SHA256

    35613635a7de2b1a7a2f33efe879fd1e6e4ad294403d259720d012c69f54627b

  • SHA512

    7bb61e1ccc95e5b0bfe0551d4b2e69e123b17634f736ffaae08cc493cc01bf1dcd17801332c57b89cbf296a630cbc2901ea22236cc327e7117a10e309b1c6f66

  • SSDEEP

    1536:FU81HAPL50O2J5KAXTlcBe6KPbFzH5kSibs:C0APL50J5KABcwVbFr5sY

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Browser\cookies.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads