Overview

overview

3

Static

static

1

Cert/e-Szi...17.crt

windows7-x64

1

Cert/e-Szi...17.crt

windows10-2004-x64

1

Cert/ePKI ...ty.crt

windows7-x64

1

Cert/ePKI ...ty.crt

windows10-2004-x64

1

Cert/emSig...C3.crt

windows7-x64

1

Cert/emSig...C3.crt

windows10-2004-x64

1

Cert/emSig...G3.crt

windows7-x64

1

Cert/emSig...G3.crt

windows10-2004-x64

1

Cert/emSig...C1.crt

windows7-x64

1

Cert/emSig...C1.crt

windows10-2004-x64

1

Cert/emSig...G1.crt

windows7-x64

1

Cert/emSig...G1.crt

windows10-2004-x64

1

Cert/pop-s...tar.xz

windows7-x64

3

Cert/pop-s...tar.xz

windows10-2004-x64

3

pop-suppor...96.tar

windows7-x64

3

pop-suppor...96.tar

windows10-2004-x64

3

apt/history.log

windows7-x64

1

apt/history.log

windows10-2004-x64

1

apt/sources.list

windows7-x64

3

apt/sources.list

windows10-2004-x64

3

apt/source...ources

windows7-x64

3

apt/source...ources

windows10-2004-x64

3

apt/source...ources

windows7-x64

3

apt/source...ources

windows10-2004-x64

3

apt/source...ources

windows7-x64

3

apt/source...ources

windows10-2004-x64

3

apt/term.log

windows7-x64

1

apt/term.log

windows10-2004-x64

1

boot-process-times

windows7-x64

1

boot-process-times

windows10-2004-x64

1

crypttab

windows7-x64

1

crypttab

windows10-2004-x64

1

Resubmissions

30-08-2024 02:07

240830-cj8wbasbqc 3

30-08-2024 02:00

240830-ce8pra1hrc 1

30-08-2024 01:56

240830-ccx58s1grb 8

30-08-2024 01:52

240830-cadc2s1fqg 1

30-08-2024 01:45

240830-b6ltma1eke 8

30-08-2024 01:42

240830-b4pgqs1dla 8

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    30-08-2024 02:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    apt/term.log

  • Size

    5KB

  • MD5

    a6e2344188da1895dcf18818f51c7af9

  • SHA1

    dbaf52588ae2752c2c03a225503b1098b91c2c36

  • SHA256

    6dc4090ce095ed4efdcf7e2f492edd3d13e31ff0406bbecaf2823a6989c44c99

  • SHA512

    23be8ea35877c661763634d2a0d3de1964099670c7d334922a3f2bad4906ceb9bc539e06cc4c98ff50667d3157bd6589c9c2b8eeec0a2ae704f11eac383026f4

  • SSDEEP

    96:Qk99upeRYZFII52j88SQAbpis/6SLgwj5TlGMFvrsnAiSL6BE:JwMKrtAY7l4c6ZwjXGMFz0pri

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\apt\term.log
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads