Overview

overview

9

Static

static

7

72b98a2776...AS.exe

windows7-x64

9

72b98a2776...AS.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    72b98a2776d8133405f5a395f2cc97f0_NEAS

  • Size

    153KB

  • Sample

    240507-f61p1aec82

  • MD5

    72b98a2776d8133405f5a395f2cc97f0

  • SHA1

    c17960ac7f18f1721ed4ff6ade5396b16163b4e4

  • SHA256

    f15ccc94c61b18fe8c137128d62a85262fa33a840c8d3c055a3de3e5983f50ff

  • SHA512

    b6b9c63adafb6fa45973920c14187407b89b918997fe21918a868b40ce7e98fb8b47a45935060595b52e177059c79a1e5d02947b8659e585d6d1bcf2c2058257

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q1pkMJ+ZGtK1+ZGtKQNMdTajOtGtU1wAIuZAIuJC:KQSo1EZGtKgZGtK/PgtU1wAIuZAIuY

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      72b98a2776d8133405f5a395f2cc97f0_NEAS

    • Size

      153KB

    • MD5

      72b98a2776d8133405f5a395f2cc97f0

    • SHA1

      c17960ac7f18f1721ed4ff6ade5396b16163b4e4

    • SHA256

      f15ccc94c61b18fe8c137128d62a85262fa33a840c8d3c055a3de3e5983f50ff

    • SHA512

      b6b9c63adafb6fa45973920c14187407b89b918997fe21918a868b40ce7e98fb8b47a45935060595b52e177059c79a1e5d02947b8659e585d6d1bcf2c2058257

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q1pkMJ+ZGtK1+ZGtKQNMdTajOtGtU1wAIuZAIuJC:KQSo1EZGtKgZGtK/PgtU1wAIuZAIuY

    Score
    9/10
    ransomwareupx

    • Renames multiple (3446) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks