Overview

overview

9

Static

static

7

13c690bf26...0N.exe

windows7-x64

9

13c690bf26...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    13c690bf2686fbe5bbba456a58ab0240N.exe

  • Size

    36KB

  • Sample

    240719-13e94swdlf

  • MD5

    13c690bf2686fbe5bbba456a58ab0240

  • SHA1

    c10ec4025529cc2951fddc361c5b69c77b6335dd

  • SHA256

    785021efdfa2afdd7e9abb030fcb7217bcecbae67be226bea4e74b0f1979500d

  • SHA512

    6822015ddb01f756f79a80f50fd2f5f1fdbc46ba5ac8862f7e9331fd4abb44dd4e4416deb50d861c25bd4b4a161e1ba63dbccdf867b309c80c4ad569af713ac1

  • SSDEEP

    768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhJZ4BT37CPKKdJJcbQbf1Oti1JGBQOOiP:CTW7JJZE+ZuTW7JJZE+Z8

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      13c690bf2686fbe5bbba456a58ab0240N.exe

    • Size

      36KB

    • MD5

      13c690bf2686fbe5bbba456a58ab0240

    • SHA1

      c10ec4025529cc2951fddc361c5b69c77b6335dd

    • SHA256

      785021efdfa2afdd7e9abb030fcb7217bcecbae67be226bea4e74b0f1979500d

    • SHA512

      6822015ddb01f756f79a80f50fd2f5f1fdbc46ba5ac8862f7e9331fd4abb44dd4e4416deb50d861c25bd4b4a161e1ba63dbccdf867b309c80c4ad569af713ac1

    • SSDEEP

      768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhJZ4BT37CPKKdJJcbQbf1Oti1JGBQOOiP:CTW7JJZE+ZuTW7JJZE+Z8

    Score
    9/10
    ransomwareupx

    • Renames multiple (3406) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks