3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

3031f99654...99.exe

windows7-x64

9

3031f99654...99.exe

windows10-2004-x64

9

Sharing

General

Target

3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799
Size

117KB
Sample

240727-zkhf3s1djd
MD5

8f1be82ea374f4dbebde2f50bf4a2320
SHA1

94d8042be32dd6c41778977be76a7f0a65489975
SHA256

3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799
SHA512

3d263c141bacef8e5a4aa20c6e5b7a3882a715ad6ef5491d9e063be391b4adeb42c0bdf216c473f381e9c7d34324cda9216c1f04eee9e6174909db99e242dd2e
SSDEEP

3072:fny1aP2awclvmxrP2awclvmxKny1aP2awclvmxrP2awclvmxo:Ki9

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799.exe

Resource

win7-20240704-en

discovery ransomware upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799.exe

Resource

win10v2004-20240709-en

discovery ransomware upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799
- Size
  
  117KB
- MD5
  
  8f1be82ea374f4dbebde2f50bf4a2320
- SHA1
  
  94d8042be32dd6c41778977be76a7f0a65489975
- SHA256
  
  3031f99654bf2966d04d33808c86f83539ee7371dd7992fea423293191374799
- SHA512
  
  3d263c141bacef8e5a4aa20c6e5b7a3882a715ad6ef5491d9e063be391b4adeb42c0bdf216c473f381e9c7d34324cda9216c1f04eee9e6174909db99e242dd2e
- SSDEEP
  
  3072:fny1aP2awclvmxrP2awclvmxKny1aP2awclvmxrP2awclvmxo:Ki9
Score

9^/10

discovery ransomware upx
- Renames multiple (322) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy