Overview

overview

10

Static

static

10

92323bfc12...a1.exe

windows7-x64

9

92323bfc12...a1.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    92323bfc1203bc8c2fec79167953fd1c1dee7e284366140ff09cfbeb856990a1

  • Size

    97KB

  • Sample

    240420-ak48eacb5t

  • MD5

    a83801a1665d8c0b1cb64d2d18d65742

  • SHA1

    b04b6acff09d7ba76a826664c2d3851d63c65a0f

  • SHA256

    92323bfc1203bc8c2fec79167953fd1c1dee7e284366140ff09cfbeb856990a1

  • SHA512

    d849d8411d523d53e8ffa9d5d680b0dc752e5c1130d3efc5c5017286726eba560ad94f50d8011ca0ffd2320f7d9c9f810ead4d24c8fd705faf65a600f3b63232

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5S5:hfAIuZAIuYSMjoqtMHfhf5S5

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      92323bfc1203bc8c2fec79167953fd1c1dee7e284366140ff09cfbeb856990a1

    • Size

      97KB

    • MD5

      a83801a1665d8c0b1cb64d2d18d65742

    • SHA1

      b04b6acff09d7ba76a826664c2d3851d63c65a0f

    • SHA256

      92323bfc1203bc8c2fec79167953fd1c1dee7e284366140ff09cfbeb856990a1

    • SHA512

      d849d8411d523d53e8ffa9d5d680b0dc752e5c1130d3efc5c5017286726eba560ad94f50d8011ca0ffd2320f7d9c9f810ead4d24c8fd705faf65a600f3b63232

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5S5:hfAIuZAIuYSMjoqtMHfhf5S5

    Score
    9/10
    ransomwareupx

    • Renames multiple (809) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks