Overview

overview

10

Static

static

1

«FîleRea...�».7z

windows7-x64

10

«FîleRea...�».7z

windows10-2004-x64

1

Data/Confi...CH.txt

windows7-x64

1

Data/Confi...CH.txt

windows10-2004-x64

1

Data/Confi...RO.txt

windows7-x64

1

Data/Confi...RO.txt

windows10-2004-x64

1

Data/Config/code6.txt

windows7-x64

1

Data/Config/code6.txt

windows10-2004-x64

1

Data/Confi...lo.txt

windows7-x64

1

Data/Confi...lo.txt

windows10-2004-x64

1

Data/Confi....1.txt

windows7-x64

1

Data/Confi....1.txt

windows10-2004-x64

1

Data/Confi...ha.txt

windows7-x64

1

Data/Confi...ha.txt

windows10-2004-x64

1

Data/Confi...de.txt

windows7-x64

1

Data/Confi...de.txt

windows10-2004-x64

1

Data/Confi...31.txt

windows7-x64

1

Data/Confi...31.txt

windows10-2004-x64

1

Data/Confi...30.eml

windows7-x64

5

Data/Confi...30.eml

windows10-2004-x64

3

Data/Confi...dor.js

windows7-x64

3

Data/Confi...dor.js

windows10-2004-x64

3

Data/Config/todo.txt

windows7-x64

1

Data/Config/todo.txt

windows10-2004-x64

1

Data/Confi...52.txt

windows7-x64

1

Data/Confi...52.txt

windows10-2004-x64

1

Data/DOMCh...002.js

windows7-x64

3

Data/DOMCh...002.js

windows10-2004-x64

3

Data/Micro...nt.dll

windows7-x64

1

Data/Micro...nt.dll

windows10-2004-x64

1

Data/Migra....0.dll

windows7-x64

1

Data/Migra....0.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    841s
  • max time network
    849s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    03-01-2025 19:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Data/Config/mod_run_issue52331.txt

  • Size

    704B

  • MD5

    de6b86d9a5e674079e7ac7e77010b52d

  • SHA1

    0abf85928dc87816cb3d387af5515bff7c10c758

  • SHA256

    d84b2ffa9261a15ca009c8e24dd7919d554811a03277f92a182450cd423dac95

  • SHA512

    24fb1e21400daf6ab41900206dcaf20ff8b7d076bc072f7d9656b631c701e930f96fb973e6f11b5d8feb8175d58ea8df8402d39b18c1fa38eb2ea01bde6ce817

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Data\Config\mod_run_issue52331.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads