Overview

overview

10

Static

static

10

bf53f923fc...a6.exe

windows7-x64

9

bf53f923fc...a6.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6

  • Size

    45KB

  • Sample

    240526-cyzwyscd53

  • MD5

    1de88bc39afa8b62ec18aa69f70307a7

  • SHA1

    2b4f0b1fe8912a10d9d21d8ea3f55a4294bcf9bd

  • SHA256

    bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6

  • SHA512

    910546370f0e77f261d431af9f389686497de4e5df9e339dc5e1cae1fe8e2dd97c93f45df84e2fbdd29d0af34d67a38b9737d683c8860bec898a90bfe38f10b9

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzf:CTWn1++PJHJXA/OsIZfzc3/Q8zxF

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6

    • Size

      45KB

    • MD5

      1de88bc39afa8b62ec18aa69f70307a7

    • SHA1

      2b4f0b1fe8912a10d9d21d8ea3f55a4294bcf9bd

    • SHA256

      bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6

    • SHA512

      910546370f0e77f261d431af9f389686497de4e5df9e339dc5e1cae1fe8e2dd97c93f45df84e2fbdd29d0af34d67a38b9737d683c8860bec898a90bfe38f10b9

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzf:CTWn1++PJHJXA/OsIZfzc3/Q8zxF

    Score
    9/10
    ransomwareupx

    • Renames multiple (935) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks