Overview

overview

9

Static

static

7

67bc589c02...KI.exe

windows7-x64

9

67bc589c02...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    67bc589c0204ccb4be0dfb335003bcc0_NEIKI

  • Size

    130KB

  • Sample

    240507-3klqaaha98

  • MD5

    67bc589c0204ccb4be0dfb335003bcc0

  • SHA1

    23d10397679d8162d7b65c23c05a62330d2a836a

  • SHA256

    8c43d206b413bc48e79c9b78470e738c194b8ec8f3d9d43266ee951a0acb938d

  • SHA512

    b3176691306fe31a147addd5f805c293c27a74f46ef227821d8fdfa27ac74b6ad519218b1f996a77b39072bbf9c04c37894c22aed45041d49975b6dfba496c3e

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCq:+nymCAIuZAIuYSMjoqtMHfhf5SC

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      67bc589c0204ccb4be0dfb335003bcc0_NEIKI

    • Size

      130KB

    • MD5

      67bc589c0204ccb4be0dfb335003bcc0

    • SHA1

      23d10397679d8162d7b65c23c05a62330d2a836a

    • SHA256

      8c43d206b413bc48e79c9b78470e738c194b8ec8f3d9d43266ee951a0acb938d

    • SHA512

      b3176691306fe31a147addd5f805c293c27a74f46ef227821d8fdfa27ac74b6ad519218b1f996a77b39072bbf9c04c37894c22aed45041d49975b6dfba496c3e

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCq:+nymCAIuZAIuYSMjoqtMHfhf5SC

    Score
    9/10
    ransomwareupx

    • Renames multiple (3141) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks