135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

135a6f5e36...40.exe

windows7-x64

9

135a6f5e36...40.exe

windows10-2004-x64

9

Sharing

General

Target

135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40
Size

88KB
Sample

240829-xwj3yaydnm
MD5

59da19380eeb75a538adf6ea564108fa
SHA1

d8fe25aaf2f461a76b5986d5d7c8db79adac0f0f
SHA256

135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40
SHA512

a9ab605c9610e0db83e593f3ff8e41f0a1542df1109aa564ff530c829e2d934edef67861c503c9572d880d812d572ec34769b6a52e469e6da95b0ef2c378822f
SSDEEP

768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/ticsFhiXFhi4BT37CPKKdJJ1E7:CTW7JJ7TTQoQcQqbTW7JJ7TTQoQcQqq1

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40.exe

Resource

win7-20240704-en

discovery ransomware upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40
- Size
  
  88KB
- MD5
  
  59da19380eeb75a538adf6ea564108fa
- SHA1
  
  d8fe25aaf2f461a76b5986d5d7c8db79adac0f0f
- SHA256
  
  135a6f5e361a1954234ed6ac7efde4d54a1d9613c04cc9ac439dafaf9d1c4d40
- SHA512
  
  a9ab605c9610e0db83e593f3ff8e41f0a1542df1109aa564ff530c829e2d934edef67861c503c9572d880d812d572ec34769b6a52e469e6da95b0ef2c378822f
- SSDEEP
  
  768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/ticsFhiXFhi4BT37CPKKdJJ1E7:CTW7JJ7TTQoQcQqbTW7JJ7TTQoQcQqq1
Score

9^/10

discovery ransomware upx
- Renames multiple (613) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy