Overview

overview

10

Static

static

10

379f2e6169...f3.exe

windows7-x64

9

379f2e6169...f3.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    379f2e6169b698d2334a728b5632849f90e93b720779fd4a2c37d841620b7cf3

  • Size

    129KB

  • Sample

    240430-zkfx9ahc62

  • MD5

    69c40400f03083e9464b9be6ca4f3560

  • SHA1

    374c4c4f372af0765d025a5c1aab0d81b5150286

  • SHA256

    379f2e6169b698d2334a728b5632849f90e93b720779fd4a2c37d841620b7cf3

  • SHA512

    a2f1d366ae5557ac2f24a7d205d2075d0e4dd42a382f8de7a53ce591cf28b8e751c3879a0c7bdca3889c80911cb5af00c79f96def4681f39efaaa82af0877947

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCI:+nymCAIuZAIuYSMjoqtMHfhf9

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      379f2e6169b698d2334a728b5632849f90e93b720779fd4a2c37d841620b7cf3

    • Size

      129KB

    • MD5

      69c40400f03083e9464b9be6ca4f3560

    • SHA1

      374c4c4f372af0765d025a5c1aab0d81b5150286

    • SHA256

      379f2e6169b698d2334a728b5632849f90e93b720779fd4a2c37d841620b7cf3

    • SHA512

      a2f1d366ae5557ac2f24a7d205d2075d0e4dd42a382f8de7a53ce591cf28b8e751c3879a0c7bdca3889c80911cb5af00c79f96def4681f39efaaa82af0877947

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCI:+nymCAIuZAIuYSMjoqtMHfhf9

    Score
    9/10
    ransomwareupx

    • Renames multiple (3465) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks