afa79997cf3a73d44d9ae99b8c7db07e5a58b21b0152370b6e7de2106d19ff55 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

58c400a758...AS.exe

windows7-x64

9

58c400a758...AS.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

58c400a758f7795941840dccc26bd2a4_NEAS
Size

133KB
Sample

240507-wsy71sbf62
MD5

58c400a758f7795941840dccc26bd2a4
SHA1

ffcb67cc5b5d2c34b887066474446e38dd01bfab
SHA256

afa79997cf3a73d44d9ae99b8c7db07e5a58b21b0152370b6e7de2106d19ff55
SHA512

30bbfe83f97e47d6dba39d6b90e955f5398c215d4c44a198619d6e0e539ce0053e0f33316e5a263556faa293a6a0fb4826ac8309eea1602ab6287f5b769100ba
SSDEEP

1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCI:+nymCAIuZAIuYSMjoqtMHfhf5Sw

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

58c400a758f7795941840dccc26bd2a4_NEAS.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

58c400a758f7795941840dccc26bd2a4_NEAS.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  58c400a758f7795941840dccc26bd2a4_NEAS
- Size
  
  133KB
- MD5
  
  58c400a758f7795941840dccc26bd2a4
- SHA1
  
  ffcb67cc5b5d2c34b887066474446e38dd01bfab
- SHA256
  
  afa79997cf3a73d44d9ae99b8c7db07e5a58b21b0152370b6e7de2106d19ff55
- SHA512
  
  30bbfe83f97e47d6dba39d6b90e955f5398c215d4c44a198619d6e0e539ce0053e0f33316e5a263556faa293a6a0fb4826ac8309eea1602ab6287f5b769100ba
- SSDEEP
  
  1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCI:+nymCAIuZAIuYSMjoqtMHfhf5Sw
Score

9^/10

ransomware upx
- Renames multiple (3436) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy