Overview

overview

10

Static

static

10

7da129d869...ef.exe

windows7-x64

9

7da129d869...ef.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    7da129d869cb3f85d6be613522e4bdbd0da22e7e99b1b86b3f713a2020c718ef

  • Size

    69KB

  • Sample

    240611-31csbawelh

  • MD5

    2745ec18140731a2c3ded824a8b9ec19

  • SHA1

    93311268119672fb20aaae9c3b89eeea62ccbba6

  • SHA256

    7da129d869cb3f85d6be613522e4bdbd0da22e7e99b1b86b3f713a2020c718ef

  • SHA512

    79fa1174c4b9bdb1779dfa1542ce873b181eccb1e1b94b65a077eabb16a327924a238e97b3442dae40997b57ab7e253ea47a37c4af8c6b86f25fed6e7f972d4f

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxb:fnyiQSoa

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      7da129d869cb3f85d6be613522e4bdbd0da22e7e99b1b86b3f713a2020c718ef

    • Size

      69KB

    • MD5

      2745ec18140731a2c3ded824a8b9ec19

    • SHA1

      93311268119672fb20aaae9c3b89eeea62ccbba6

    • SHA256

      7da129d869cb3f85d6be613522e4bdbd0da22e7e99b1b86b3f713a2020c718ef

    • SHA512

      79fa1174c4b9bdb1779dfa1542ce873b181eccb1e1b94b65a077eabb16a327924a238e97b3442dae40997b57ab7e253ea47a37c4af8c6b86f25fed6e7f972d4f

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxb:fnyiQSoa

    Score
    9/10
    ransomwareupx

    • Renames multiple (3730) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks