Overview

overview

10

Static

static

10

Release/Ce...IR.dll

windows7-x64

1

Release/Ce...IR.dll

windows10-2004-x64

1

Release/CeleryIn.dll

windows7-x64

1

Release/CeleryIn.dll

windows10-2004-x64

1

Release/Ce...ct.exe

windows7-x64

1

Release/Ce...ct.exe

windows10-2004-x64

1

Release/EvolveAPI.dll

windows7-x64

1

Release/EvolveAPI.dll

windows10-2004-x64

1

Release/Flux.dll

windows7-x64

1

Release/Flux.dll

windows10-2004-x64

1

Release/Guna.UI2.dll

windows7-x64

1

Release/Guna.UI2.dll

windows10-2004-x64

1

Release/Mi...re.dll

windows7-x64

1

Release/Mi...re.dll

windows10-2004-x64

1

Release/Mi...ms.dll

windows7-x64

1

Release/Mi...ms.dll

windows10-2004-x64

1

Release/Mi...pf.dll

windows7-x64

1

Release/Mi...pf.dll

windows10-2004-x64

1

Release/Mo...o.html

windows7-x64

1

Release/Mo...o.html

windows10-2004-x64

1

Release/Mo...ug.log

windows7-x64

1

Release/Mo...ug.log

windows10-2004-x64

1

Release/Mo...et.dll

windows7-x64

3

Release/Mo...et.dll

windows10-2004-x64

3

Release/Mo...ain.js

windows7-x64

3

Release/Mo...ain.js

windows10-2004-x64

3

Release/Mo...lua.js

windows7-x64

3

Release/Mo...lua.js

windows10-2004-x64

3

Release/Mo...ain.js

windows7-x64

3

Release/Mo...ain.js

windows10-2004-x64

3

Release/Mo....de.js

windows7-x64

3

Release/Mo....de.js

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 01:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Release/Monaco/debug.log

  • Size

    6KB

  • MD5

    e60d3725d554ea6201f30c7da4ed9d6b

  • SHA1

    880533e939e3f5ecbc37992d6c2159d729c8d39f

  • SHA256

    165ac18afa08f97e79c82a96deb6815585de7b22fb07fbb40f8d8900e387d5cb

  • SHA512

    ff0c7b9488ccf38733aa4881d9636d874c0dfad62c0b188fc5b8357ff18975770ad02cd14dd775be46e26d2e9092f88e50c59eb70ef8977ef2501e9030f4cced

  • SSDEEP

    48:rRPPPM1112727TTwwwwLCCCND7ND7ND7ND7ajjjf7f7f7f7NCCCOOOOFFFmg4uuA:RicBBBCTTTAvHHHHHr

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Release\Monaco\debug.log
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads