c2ba0018de8dcf0abfb2669cce95ed09377e9a9da7ff8e74e95688c99a025634 | Triage

Analysis

max time kernel
121s
max time network
126s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
15-11-2024 16:37

Sharing

Report Analysis Logs

General

Target

NSM.ini
Size

6KB
MD5

88b1dab8f4fd1ae879685995c90bd902
SHA1

3d23fb4036dc17fa4bee27e3e2a56ff49beed59d
SHA256

60fe386112ad51f40a1ee9e1b15eca802ced174d7055341c491dee06780b3f92
SHA512

4ea2c20991189fe1d6d5c700603c038406303cca594577ddcbc16ab9a7915cb4d4aa9e53093747db164f068a7ba0f568424bc8cb7682f1a3fb17e4c9ec01f047
SSDEEP

96:B6pfGAtXOdwpEKyhuSY92fihuUhENXh8o3IFhucOi49VLO9kNVnkOeafhuK7cwo4:BnwpwYFuy6/njroYbe3j1vlS

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs

Processes:

NOTEPAD.EXE

pid	Process
2376	NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\NSM.ini
1⤵
- Opens file in notepad (likely ransom note)
PID:2376

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads