Overview

overview

10

Static

static

10

4cc85d19d8...bd.exe

windows7-x64

9

4cc85d19d8...bd.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    4cc85d19d8fcd37373ad75e670b7d5380438b71692813739f8aa8c7b810d0cbd

  • Size

    170KB

  • Sample

    240602-1kh82shb33

  • MD5

    e7466b9fa46170d20050bbbfa3e73dab

  • SHA1

    625751b8f34a8f6694ce62bb6c95eb4c600fa5fe

  • SHA256

    4cc85d19d8fcd37373ad75e670b7d5380438b71692813739f8aa8c7b810d0cbd

  • SHA512

    9ffb9b2deb29cbca26b40dc95d88d863da2e8c9431069b60a7552b2f4216bba317bfa79ddf003f8664f7383ff1b36f87e0ca24892a0279068639d1e0a7bfac92

  • SSDEEP

    3072:fnyiQSo1EZGtKgZGtK/PgtU1wAIuZAIucSarSaF:KiQSo1EZGtKgZGtK/CAIuZAIucSarSaF

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      4cc85d19d8fcd37373ad75e670b7d5380438b71692813739f8aa8c7b810d0cbd

    • Size

      170KB

    • MD5

      e7466b9fa46170d20050bbbfa3e73dab

    • SHA1

      625751b8f34a8f6694ce62bb6c95eb4c600fa5fe

    • SHA256

      4cc85d19d8fcd37373ad75e670b7d5380438b71692813739f8aa8c7b810d0cbd

    • SHA512

      9ffb9b2deb29cbca26b40dc95d88d863da2e8c9431069b60a7552b2f4216bba317bfa79ddf003f8664f7383ff1b36f87e0ca24892a0279068639d1e0a7bfac92

    • SSDEEP

      3072:fnyiQSo1EZGtKgZGtK/PgtU1wAIuZAIucSarSaF:KiQSo1EZGtKgZGtK/CAIuZAIucSarSaF

    Score
    9/10
    ransomwareupx

    • Renames multiple (3261) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks