Analysis
-
max time kernel
148s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
16-09-2024 22:58
Static task
static1
Behavioral task
behavioral1
Sample
nRi28Wtqb1-UA.rar
Resource
win10v2004-20240802-en
Behavioral task
behavioral2
Sample
bsod fix.bat
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
instructions.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral4
Sample
nRi28Wtqb1.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
w11 fix.bat
Resource
win10v2004-20240802-en
General
-
Target
instructions.txt
-
Size
1KB
-
MD5
060030231f16c28316db957b3b8f9d76
-
SHA1
db81e86a6366955ef2cdcfc8f2933d2ca73ac580
-
SHA256
6e9d7a74bff2718b61ce3bcc538a99662c8e47958f61f2bfa1dc014c0986410e
-
SHA512
50ebda840758fda86956b3700034d7117d52b8ba3a37500fc89d9dffc415f20a8ebcf94ec2ab4c7c937065ca8a80ce9da41cb47a14dad3f4f6a65d30a5bf3b3a
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
Processes:
NOTEPAD.EXEpid process 4552 NOTEPAD.EXE