Overview

overview

9

Static

static

7

24de78f2ea...0N.exe

windows7-x64

9

24de78f2ea...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    24de78f2ea124803670bcd641b261b60N.exe

  • Size

    126KB

  • Sample

    240715-2xqdkawdjh

  • MD5

    24de78f2ea124803670bcd641b261b60

  • SHA1

    7671065be328109868dc67425712307fa20f3e22

  • SHA256

    a331d7aaaf71172a869db121d2990fc6a4f0703279b6eb116c29b567a9c1f10d

  • SHA512

    63c49619c29adb36de53ff3599aa99b2b44b57b7e3839bc02299a0de8e55c6d130cd5c4b525263002e7e4c4beac97f40cf0f6b525482a4af5ead45d62dac5bd4

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxtdxcgMETWn1++PJHJXA/OsIZfzc3/Q8zxtdxU:KQSo4dxaUQSo4dxavtdt7

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      24de78f2ea124803670bcd641b261b60N.exe

    • Size

      126KB

    • MD5

      24de78f2ea124803670bcd641b261b60

    • SHA1

      7671065be328109868dc67425712307fa20f3e22

    • SHA256

      a331d7aaaf71172a869db121d2990fc6a4f0703279b6eb116c29b567a9c1f10d

    • SHA512

      63c49619c29adb36de53ff3599aa99b2b44b57b7e3839bc02299a0de8e55c6d130cd5c4b525263002e7e4c4beac97f40cf0f6b525482a4af5ead45d62dac5bd4

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxtdxcgMETWn1++PJHJXA/OsIZfzc3/Q8zxtdxU:KQSo4dxaUQSo4dxavtdt7

    Score
    9/10
    ransomwareupx

    • Renames multiple (3691) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks