Overview

overview

10

Static

static

10

30059227ac...4d.exe

windows7-x64

9

30059227ac...4d.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    30059227acf149461cfeb8435a4a8ebac34d4f440e66104ce3164500c579794d

  • Size

    128KB

  • Sample

    240429-ytj6labg3z

  • MD5

    35becfb2f37f599a717f5c58cef94d2d

  • SHA1

    3a30881b313d43f5d7a2a6551496c58d2d3db130

  • SHA256

    30059227acf149461cfeb8435a4a8ebac34d4f440e66104ce3164500c579794d

  • SHA512

    f78d501b345a348c4ae187fd7ce6d64d9042deec9f2dff5c4da380738650a14c500b65083c7576d0f714f0dcb06a721619edba58f1e65510af46133596814fc2

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCK:+nymCAIuZAIuYSMjoqtMHfhfn

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      30059227acf149461cfeb8435a4a8ebac34d4f440e66104ce3164500c579794d

    • Size

      128KB

    • MD5

      35becfb2f37f599a717f5c58cef94d2d

    • SHA1

      3a30881b313d43f5d7a2a6551496c58d2d3db130

    • SHA256

      30059227acf149461cfeb8435a4a8ebac34d4f440e66104ce3164500c579794d

    • SHA512

      f78d501b345a348c4ae187fd7ce6d64d9042deec9f2dff5c4da380738650a14c500b65083c7576d0f714f0dcb06a721619edba58f1e65510af46133596814fc2

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCK:+nymCAIuZAIuYSMjoqtMHfhfn

    Score
    9/10
    ransomwareupx

    • Renames multiple (3441) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks