Overview

overview

9

Static

static

7

67b48e2ec6...40.exe

windows7-x64

9

67b48e2ec6...40.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    67b48e2ec6c6ec7b9dc68a5d22312d041e200d43483dbc65b9c0ef20cfb51240.exe

  • Size

    86KB

  • Sample

    240523-bccnvsff3w

  • MD5

    14ab581cfa050851670b5fab3ecb8610

  • SHA1

    4d4c5ca34242df74e3e09d20bfc7e86b1ee87d87

  • SHA256

    67b48e2ec6c6ec7b9dc68a5d22312d041e200d43483dbc65b9c0ef20cfb51240

  • SHA512

    2e0f4b291f4cbabed70baff8c69d89d5383d272aa485523f352f2db7e540889407d1510010b6b0448ac63d386bd3f86d52cfee59842c8cbaf5586ca567b1443c

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUspTWn1++PJHJXA/OsIZfzc3/Q8asUsn5J:KQSohsUsNQSohsUsn5J

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      67b48e2ec6c6ec7b9dc68a5d22312d041e200d43483dbc65b9c0ef20cfb51240.exe

    • Size

      86KB

    • MD5

      14ab581cfa050851670b5fab3ecb8610

    • SHA1

      4d4c5ca34242df74e3e09d20bfc7e86b1ee87d87

    • SHA256

      67b48e2ec6c6ec7b9dc68a5d22312d041e200d43483dbc65b9c0ef20cfb51240

    • SHA512

      2e0f4b291f4cbabed70baff8c69d89d5383d272aa485523f352f2db7e540889407d1510010b6b0448ac63d386bd3f86d52cfee59842c8cbaf5586ca567b1443c

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUspTWn1++PJHJXA/OsIZfzc3/Q8asUsn5J:KQSohsUsNQSohsUsn5J

    Score
    9/10
    ransomwareupx

    • Renames multiple (4860) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks