Overview

overview

10

Static

static

10

8ccd82d3e4...02.exe

windows7-x64

9

8ccd82d3e4...02.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8ccd82d3e440bd57faccbb5cbb404df96444369c34c69918e01ddf0dd1899c02

  • Size

    91KB

  • Sample

    240626-alrcyavfrn

  • MD5

    e146cc0e9ec354428a1128938026bd6f

  • SHA1

    327da2a0f6500735fb510c8b5080cd3deac5f3b0

  • SHA256

    8ccd82d3e440bd57faccbb5cbb404df96444369c34c69918e01ddf0dd1899c02

  • SHA512

    90b9680d612ca770d91e7c3fb682143c303d4918b301be3a9f017dceb67c0ee544b45cd2b9d2c0361aeee19fbce51405fd1b28f01f5dca2e3b23d0d89270a93f

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsJOVYd7n97nq:fnyiQSohsUsKY5Zq

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      8ccd82d3e440bd57faccbb5cbb404df96444369c34c69918e01ddf0dd1899c02

    • Size

      91KB

    • MD5

      e146cc0e9ec354428a1128938026bd6f

    • SHA1

      327da2a0f6500735fb510c8b5080cd3deac5f3b0

    • SHA256

      8ccd82d3e440bd57faccbb5cbb404df96444369c34c69918e01ddf0dd1899c02

    • SHA512

      90b9680d612ca770d91e7c3fb682143c303d4918b301be3a9f017dceb67c0ee544b45cd2b9d2c0361aeee19fbce51405fd1b28f01f5dca2e3b23d0d89270a93f

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsJOVYd7n97nq:fnyiQSohsUsKY5Zq

    Score
    9/10
    ransomwareupx

    • Renames multiple (3462) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks