Overview

overview

10

Static

static

10

c5c66792b9...65.exe

windows7-x64

9

c5c66792b9...65.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    c5c66792b98560f854ce274b7e97eb651ca0445c81f8a0da8f3c6b6482dc5465

  • Size

    114KB

  • Sample

    240601-dhkmrsfe8x

  • MD5

    852604a0939680c848bc3543943882d0

  • SHA1

    0e1272e9166c26f2a88e5862b4712fc172cdc6df

  • SHA256

    c5c66792b98560f854ce274b7e97eb651ca0445c81f8a0da8f3c6b6482dc5465

  • SHA512

    0f714b35970ea27efca552dad783219631fe6e0e1af652bd1461cb54cb9295f94e30f87c03dd3a401f711c0ffd219ed74b88a51a0be4421c60d168cec35b217c

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xd:hfAIuZAIuYSMjoqtMHfhfE

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      c5c66792b98560f854ce274b7e97eb651ca0445c81f8a0da8f3c6b6482dc5465

    • Size

      114KB

    • MD5

      852604a0939680c848bc3543943882d0

    • SHA1

      0e1272e9166c26f2a88e5862b4712fc172cdc6df

    • SHA256

      c5c66792b98560f854ce274b7e97eb651ca0445c81f8a0da8f3c6b6482dc5465

    • SHA512

      0f714b35970ea27efca552dad783219631fe6e0e1af652bd1461cb54cb9295f94e30f87c03dd3a401f711c0ffd219ed74b88a51a0be4421c60d168cec35b217c

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xd:hfAIuZAIuYSMjoqtMHfhfE

    Score
    9/10
    ransomwareupx

    • Renames multiple (3454) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks