Overview

overview

1

Static

static

1

sand.txt

windows10-1703-x64

1

Analysis

  • max time kernel
    130s
  • max time network
    136s
  • platform
    windows10-1703_x64
  • resource
    win10-20240611-en
  • resource tags

    arch:x64arch:x86image:win10-20240611-enlocale:en-usos:windows10-1703-x64system
  • submitted
    18/08/2024, 05:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sand.txt

  • Size

    124B

  • MD5

    1b7bddf54c8e34ed2cf093f8a7efcf6a

  • SHA1

    867604c5fda54603ff510e86ea6f6caa04160e9b

  • SHA256

    214d29af0d3685924f6e1dd06a0059a6e848e50ed804569975cf9dff016a6734

  • SHA512

    55f7cd562d095a904fa54931cc37a784768b5b5c1818cb4e17ed6e1a2ab720707ef4b54b8d13b6075361b5ae6393a3d7bdb0f13e6e63e9d021a31131f344302e

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\sand.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    • Suspicious use of FindShellTrayWindow
    PID:3840

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads