Overview

overview

9

Static

static

7

3d35b0b30e...0N.exe

windows7-x64

9

3d35b0b30e...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    3d35b0b30e93f2bac6814fe4041f5510N.exe

  • Size

    97KB

  • Sample

    240716-a4wqdazemc

  • MD5

    3d35b0b30e93f2bac6814fe4041f5510

  • SHA1

    667ff33a554dc78d6adece83c41c6998d4bedad1

  • SHA256

    bd225e15260572ea50ee9e08b36b8636d467a2c1af38c9c10b028d4e27292e63

  • SHA512

    d5074030f8989532a9af8287dd9bdcb53d8c1329aca0a1986e4dc0fa898d7e988ee4854d9d97034e68ddeb52eaddcc8b33e88077373513130279ca7df788138b

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKK0Sj/E2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUZ:V7Zf/FAxTWs+I8K/XCKCGSqzVa

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      3d35b0b30e93f2bac6814fe4041f5510N.exe

    • Size

      97KB

    • MD5

      3d35b0b30e93f2bac6814fe4041f5510

    • SHA1

      667ff33a554dc78d6adece83c41c6998d4bedad1

    • SHA256

      bd225e15260572ea50ee9e08b36b8636d467a2c1af38c9c10b028d4e27292e63

    • SHA512

      d5074030f8989532a9af8287dd9bdcb53d8c1329aca0a1986e4dc0fa898d7e988ee4854d9d97034e68ddeb52eaddcc8b33e88077373513130279ca7df788138b

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKK0Sj/E2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUZ:V7Zf/FAxTWs+I8K/XCKCGSqzVa

    Score
    9/10
    ransomwareupx

    • Renames multiple (3323) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks