Overview

overview

10

Static

static

10

Setup_Update.zip

windows7-x64

8

Setup_Update.zip

windows10-2004-x64

1

Setup_Upda...te.exe

windows7-x64

10

Setup_Upda...te.exe

windows10-2004-x64

8

Setup_Upda...AL.txt

windows7-x64

1

Setup_Upda...AL.txt

windows10-2004-x64

1

Setup_Upda...rv.dll

windows10-2004-x64

1

Setup_Upda...nk.dll

windows10-2004-x64

7

Setup_Update/hmkd.dll

windows10-2004-x64

1

Setup_Upda...fg.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    91s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-01-2025 10:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Setup_Update/TUTORIAL.txt

  • Size

    115B

  • MD5

    1c2d069bb3074c90a737fed9402ef341

  • SHA1

    1e8441c8d9744d0fe41eeacd9ef1fdb2ec9f5abb

  • SHA256

    0258e8f9136dd0428efc08b86fbba8515946ec14dab712eb1996cea864f7ad13

  • SHA512

    dc69fa210958bf999424fed91cc649c17fcb574522b0b8d3341a282fdd47d7497b7a431b6dcb691ca7a67add6686896b0f592ade00169e0dbb086a57866981c6

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Setup_Update\TUTORIAL.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:1656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads