2150bb1605d24d876b24671ff6a4102a18940f8afee7f5883d1e107bc7f6195e | Triage

Submit
Reports

Overview

overview

9

Static

static

7

0f06440a3d...cf.exe

windows7-x64

9

0f06440a3d...cf.exe

windows10-2004-x64

9

Sharing

General

Target

0f06440a3d0e6dc5227f25da8e8145cf.exe
Size

252KB
Sample

240426-me3tlsed4v
MD5

0f06440a3d0e6dc5227f25da8e8145cf
SHA1

56e7a7eb1e1b03e6d00a13f53f0a2bb41f3ffc71
SHA256

2150bb1605d24d876b24671ff6a4102a18940f8afee7f5883d1e107bc7f6195e
SHA512

5361989e0733a6ac5e08600733d6697f22efe9f96974d2fccdab8f0f9fe0bbaf4350ee3bc9604c66f455635d9d38d27b2c9b5912b81f43d42492b3c0a13e3b82
SSDEEP

3072:+nymCAIuZAIuYSMjoqtMHfhflixiDfAIuZAIuYSMjoqtMHfhflixiZ:JmCAIuZAIuDMVtM/tfAIuZAIuDMVtM/j

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

0f06440a3d0e6dc5227f25da8e8145cf.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0f06440a3d0e6dc5227f25da8e8145cf.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  0f06440a3d0e6dc5227f25da8e8145cf.exe
- Size
  
  252KB
- MD5
  
  0f06440a3d0e6dc5227f25da8e8145cf
- SHA1
  
  56e7a7eb1e1b03e6d00a13f53f0a2bb41f3ffc71
- SHA256
  
  2150bb1605d24d876b24671ff6a4102a18940f8afee7f5883d1e107bc7f6195e
- SHA512
  
  5361989e0733a6ac5e08600733d6697f22efe9f96974d2fccdab8f0f9fe0bbaf4350ee3bc9604c66f455635d9d38d27b2c9b5912b81f43d42492b3c0a13e3b82
- SSDEEP
  
  3072:+nymCAIuZAIuYSMjoqtMHfhflixiDfAIuZAIuYSMjoqtMHfhflixiZ:JmCAIuZAIuDMVtM/tfAIuZAIuDMVtM/j
Score

9^/10

ransomware upx
- Renames multiple (367) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy