Overview

overview

9

Static

static

7

6d58fa61eb...2f.exe

windows7-x64

9

6d58fa61eb...2f.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    6d58fa61eb975ed846b553201195d075e670d8f9e90188f1c91dc465d5692a2f

  • Size

    127KB

  • Sample

    240722-2l8qrsseka

  • MD5

    d6c7da03c784187b451bc9354dfed641

  • SHA1

    3830478cd8dc511e1b2158bdfe14abfab76678b5

  • SHA256

    6d58fa61eb975ed846b553201195d075e670d8f9e90188f1c91dc465d5692a2f

  • SHA512

    854091d6eb5f6fa8fa21d38db5ce1676420a9929a1358b838c4fc8efc0d8588ecd5e93e72c41fd91edf2e9989d69b7ea8472e68c266a297a8743744a53dac38e

  • SSDEEP

    1536:V7Zf/FAxTWxOmO/fxRfx46Z7Zf/FAxTWxOmO/fxRfx46h:fny+Tuf7fNny+Tuf7fv

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      6d58fa61eb975ed846b553201195d075e670d8f9e90188f1c91dc465d5692a2f

    • Size

      127KB

    • MD5

      d6c7da03c784187b451bc9354dfed641

    • SHA1

      3830478cd8dc511e1b2158bdfe14abfab76678b5

    • SHA256

      6d58fa61eb975ed846b553201195d075e670d8f9e90188f1c91dc465d5692a2f

    • SHA512

      854091d6eb5f6fa8fa21d38db5ce1676420a9929a1358b838c4fc8efc0d8588ecd5e93e72c41fd91edf2e9989d69b7ea8472e68c266a297a8743744a53dac38e

    • SSDEEP

      1536:V7Zf/FAxTWxOmO/fxRfx46Z7Zf/FAxTWxOmO/fxRfx46h:fny+Tuf7fNny+Tuf7fv

    Score
    9/10
    ransomwareupx

    • Renames multiple (4488) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks