Overview

overview

9

Static

static

7

92c778405f...AS.exe

windows7-x64

9

92c778405f...AS.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    92c778405f1080a6623ae01149459830_NEAS

  • Size

    224KB

  • Sample

    240507-jeaw2shh54

  • MD5

    92c778405f1080a6623ae01149459830

  • SHA1

    9121dbfa20cd86366b2545e729e5c19d98905a54

  • SHA256

    806696b58a8068a8b1395fcb91f944823fe7af19e0347ce3a1faf5ab4ff88094

  • SHA512

    c4c807ed2058609108afeb018976973ff2f85ee57577dcf02f61aa77279c9333cd014fdff58faa717fcbdb01e27168cda846aae085efb5e39d95ac14dffd6739

  • SSDEEP

    6144:JmCAIuZAIuDMVtM/SgLzdGn6K85m9OA+tSo5VVR4:7AIuZAIuO98VVG

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      92c778405f1080a6623ae01149459830_NEAS

    • Size

      224KB

    • MD5

      92c778405f1080a6623ae01149459830

    • SHA1

      9121dbfa20cd86366b2545e729e5c19d98905a54

    • SHA256

      806696b58a8068a8b1395fcb91f944823fe7af19e0347ce3a1faf5ab4ff88094

    • SHA512

      c4c807ed2058609108afeb018976973ff2f85ee57577dcf02f61aa77279c9333cd014fdff58faa717fcbdb01e27168cda846aae085efb5e39d95ac14dffd6739

    • SSDEEP

      6144:JmCAIuZAIuDMVtM/SgLzdGn6K85m9OA+tSo5VVR4:7AIuZAIuO98VVG

    Score
    9/10
    ransomwareupx

    • Renames multiple (3070) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks