Overview

overview

10

Static

static

10

ced67669da...00.exe

windows7-x64

9

ced67669da...00.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ced67669da149155b2dec1a541ec9596850bb52b6b07bb9f0b17242e597ece00

  • Size

    97KB

  • Sample

    240526-dpnm1acg6x

  • MD5

    1a307ace8d3bb56789a2e59992299fff

  • SHA1

    c9e2041042e9501aea2868c0d8aa31e7bbf30a52

  • SHA256

    ced67669da149155b2dec1a541ec9596850bb52b6b07bb9f0b17242e597ece00

  • SHA512

    6b4a7695e3d256ac5e9e85c1b137577a4c1d079e05f79e1b2389833ea243b0ef7edae17e20aa8dec19511f7ccab40177ce8199bb052b8129c2859936da9d3fcc

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfh:hfAIuZAIuYSMjoqtMHfhfh

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      ced67669da149155b2dec1a541ec9596850bb52b6b07bb9f0b17242e597ece00

    • Size

      97KB

    • MD5

      1a307ace8d3bb56789a2e59992299fff

    • SHA1

      c9e2041042e9501aea2868c0d8aa31e7bbf30a52

    • SHA256

      ced67669da149155b2dec1a541ec9596850bb52b6b07bb9f0b17242e597ece00

    • SHA512

      6b4a7695e3d256ac5e9e85c1b137577a4c1d079e05f79e1b2389833ea243b0ef7edae17e20aa8dec19511f7ccab40177ce8199bb052b8129c2859936da9d3fcc

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfh:hfAIuZAIuYSMjoqtMHfhfh

    Score
    9/10
    ransomwareupx

    • Renames multiple (3454) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks