Overview

overview

7

Static

static

1

2024-06-25...if.exe

windows7-x64

7

2024-06-25...if.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-25_6954d2099395f447040a44a44a8730e0_bkransomware_floxif

  • Size

    2.1MB

  • Sample

    240625-knyvxazble

  • MD5

    6954d2099395f447040a44a44a8730e0

  • SHA1

    051e3f00665bed2c5a91ae6f6d97df30b0f00099

  • SHA256

    bbdf4ae8783b7f15bf82646abf0875c95abba1d9fa6f3a58ac9496ad90297250

  • SHA512

    5b74fbb9fc2aba262e17c3225b88f2da508c63c999dbe5cf300e825cf124457e0ce5df1eb2ec1846aac3cad173ee07bd5a9820182c1b6ccbad8c6fb5b8e3361a

  • SSDEEP

    49152:/ofqq2msxBMWSxRio/T4aQGJ6+Y59N2153gqPk4utu+NNAVw6rPYC:gCq2R3MWSxN/c9GJrYx2r3rPk4utCVH

Score
7/10
upx

Malware Config

Targets

    • Target

      2024-06-25_6954d2099395f447040a44a44a8730e0_bkransomware_floxif

    • Size

      2.1MB

    • MD5

      6954d2099395f447040a44a44a8730e0

    • SHA1

      051e3f00665bed2c5a91ae6f6d97df30b0f00099

    • SHA256

      bbdf4ae8783b7f15bf82646abf0875c95abba1d9fa6f3a58ac9496ad90297250

    • SHA512

      5b74fbb9fc2aba262e17c3225b88f2da508c63c999dbe5cf300e825cf124457e0ce5df1eb2ec1846aac3cad173ee07bd5a9820182c1b6ccbad8c6fb5b8e3361a

    • SSDEEP

      49152:/ofqq2msxBMWSxRio/T4aQGJ6+Y59N2153gqPk4utu+NNAVw6rPYC:gCq2R3MWSxN/c9GJrYx2r3rPk4utCVH

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks