4cea74d80b0fed024d554aec6391dd7a4cc41abc44584b7b4617785d4842a1b0

Submit
Reports

Overview

overview

Static

static

Yashma-Ran...rm.vbs

windows7-x64

Yashma-Ran...rm.vbs

windows10-2004-x64

Yashma-Ran...nX.vbs

windows7-x64

Yashma-Ran...nX.vbs

windows10-2004-x64

Yashma-Ran...nZ.vbs

windows7-x64

Yashma-Ran...nZ.vbs

windows10-2004-x64

Yashma-Ran...m2.vbs

windows7-x64

Yashma-Ran...m2.vbs

windows10-2004-x64

Yashma-Ran...on.vbs

windows7-x64

Yashma-Ran...on.vbs

windows10-2004-x64

Yashma-Ran...on.vbs

windows7-x64

Yashma-Ran...on.vbs

windows10-2004-x64

Yashma-Ran...orm.js

windows7-x64

Yashma-Ran...orm.js

windows10-2004-x64

Yashma-Ran...rm.vbs

windows7-x64

Yashma-Ran...rm.vbs

windows10-2004-x64

Yashma-Ran...ns.vbs

windows7-x64

Yashma-Ran...ns.vbs

windows10-2004-x64

Yashma-Ran...er.vbs

windows7-x64

Yashma-Ran...er.vbs

windows10-2004-x64

Yashma-Ran...es.vbs

windows7-x64

Yashma-Ran...es.vbs

windows10-2004-x64

Yashma-Ran...er.vbs

windows7-x64

Yashma-Ran...er.vbs

windows10-2004-x64

Yashma-Ran...rce.js

windows7-x64

Yashma-Ran...rce.js

windows10-2004-x64

Yashma-Ran...er.exe

windows7-x64

Yashma-Ran...er.exe

windows10-2004-x64

Analysis

max time kernel
149s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
20-12-2024 04:18

Sharing

Copy URL

Twitter E-mail

Static task

static1

chaos

3 signatures

Behavioral task

behavioral1

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/BlackForm.vbs

Resource

win7-20241010-en

discovery

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/BlackForm.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ButtonX.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ButtonX.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ButtonZ.vbs

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ButtonZ.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral7

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/Form2.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/Form2.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/MinMaxButton.vbs

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/MinMaxButton.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ShapedButton.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ShapedButton.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.js

Resource

win10v2004-20241007-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.vbs

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/extensions.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/extensions.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Yashma-Ransomware-main/Yashma Ransomware/Properties/Resources.Designer.vbs

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Yashma-Ransomware-main/Yashma Ransomware/Properties/Resources.Designer.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Yashma-Ransomware-main/Yashma Ransomware/Properties/Resources.vbs

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Yashma-Ransomware-main/Yashma Ransomware/Properties/Resources.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Yashma-Ransomware-main/Yashma Ransomware/Properties/Settings.Designer.vbs

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Yashma-Ransomware-main/Yashma Ransomware/Properties/Settings.Designer.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Yashma-Ransomware-main/Yashma Ransomware/Resources/Source.js

Resource

win7-20241010-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

Yashma-Ransomware-main/Yashma Ransomware/Resources/Source.js

Resource

win10v2004-20241007-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

Yashma-Ransomware-main/Yashma Ransomware/Resources/decrypter.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Yashma-Ransomware-main/Yashma Ransomware/Resources/decrypter.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/extensions.vbs
Size

160KB
MD5

73ef1a21b1f440316d7dffb56b6cf8fb
SHA1

f32c5500740ed650470dd5a33954d0aa871c8d81
SHA256

6003d6663794a29753840d7ba96ab195bbd633de98f8495afee72541803e0535
SHA512

8bac574621a1a88e97e66b1a21bd20b0d04f424446923975b3288d901c6e7e891aecf930384d37363bbacaf2eccf6976e88054793ec23e7a24d200a87c5f1a00
SSDEEP

768:KjXdskSv6sQSDg33ITTV06eiibdih3kQoQ4Ysmgq/QdM91Cl:Kj2v6R334Vi4suqky

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\Yashma-Ransomware-main\Yashma Ransomware\CustomWindowsForm\extensions.vbs"
1⤵
PID:2232

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads