3a6f63e73f7c4682bbd0137de8cdf884981b2baa9aa64ccda9ec1803adf91fef | Triage

Submit
Reports

Overview

overview

9

Static

static

7

a886490f6b...0N.exe

windows7-x64

9

a886490f6b...0N.exe

windows10-2004-x64

9

Sharing

General

Target

a886490f6bd13f27ca8d87883cbdb480N.exe
Size

195KB
Sample

240722-nsppksvhrc
MD5

a886490f6bd13f27ca8d87883cbdb480
SHA1

f67e95cfd743ec7478146a02f94cae0a250ef581
SHA256

3a6f63e73f7c4682bbd0137de8cdf884981b2baa9aa64ccda9ec1803adf91fef
SHA512

35dea965a2134ac8a26a80eebcf2340173c986b22fe32711c2a47bac7633edb4ac8da9c426fbc6fa9640965961a056ec8b608cfeaafb9ac6277c1b12c56d6306
SSDEEP

6144:wHm3AIuZAIuqkyf7fTHm3AIuZAIuqkyf7f0:XAIuZAIujAIuZAIuJ

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a886490f6bd13f27ca8d87883cbdb480N.exe

Resource

win7-20240704-en

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

a886490f6bd13f27ca8d87883cbdb480N.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  a886490f6bd13f27ca8d87883cbdb480N.exe
- Size
  
  195KB
- MD5
  
  a886490f6bd13f27ca8d87883cbdb480
- SHA1
  
  f67e95cfd743ec7478146a02f94cae0a250ef581
- SHA256
  
  3a6f63e73f7c4682bbd0137de8cdf884981b2baa9aa64ccda9ec1803adf91fef
- SHA512
  
  35dea965a2134ac8a26a80eebcf2340173c986b22fe32711c2a47bac7633edb4ac8da9c426fbc6fa9640965961a056ec8b608cfeaafb9ac6277c1b12c56d6306
- SSDEEP
  
  6144:wHm3AIuZAIuqkyf7fTHm3AIuZAIuqkyf7f0:XAIuZAIujAIuZAIuJ
Score

9^/10

ransomware upx
- Renames multiple (315) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy