Overview

overview

10

Static

static

10

824aac2ec8...6b.exe

windows7-x64

9

824aac2ec8...6b.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    824aac2ec860e1095e139c7b7791dd76a98084c192b4d2ad27923de59aab8a6b

  • Size

    131KB

  • Sample

    240513-28414aac38

  • MD5

    6398a277a5fc76a1c69cad3c24763d09

  • SHA1

    e0c4c8d61b6a364b03471bfe8a157b7cb027e00c

  • SHA256

    824aac2ec860e1095e139c7b7791dd76a98084c192b4d2ad27923de59aab8a6b

  • SHA512

    a19a558501b99b50b2784e645917ee6293ec3656a36174190dc1bb142e22c8e9bc3d46ea15a0914da5e260abbd0f0b234c810e3fa0afe8858bc762bbe942b496

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC4:+nymCAIuZAIuYSMjoqtMHfhfQJ4Jf

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      824aac2ec860e1095e139c7b7791dd76a98084c192b4d2ad27923de59aab8a6b

    • Size

      131KB

    • MD5

      6398a277a5fc76a1c69cad3c24763d09

    • SHA1

      e0c4c8d61b6a364b03471bfe8a157b7cb027e00c

    • SHA256

      824aac2ec860e1095e139c7b7791dd76a98084c192b4d2ad27923de59aab8a6b

    • SHA512

      a19a558501b99b50b2784e645917ee6293ec3656a36174190dc1bb142e22c8e9bc3d46ea15a0914da5e260abbd0f0b234c810e3fa0afe8858bc762bbe942b496

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC4:+nymCAIuZAIuYSMjoqtMHfhfQJ4Jf

    Score
    9/10
    ransomwareupx

    • Renames multiple (2852) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks