Overview

overview

9

Static

static

7

36f9b750ed...30.exe

windows7-x64

9

36f9b750ed...30.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    36f9b750eddaf10eeac6d756d4a951ac8bc985d8df979253026c179a39465130

  • Size

    1.1MB

  • Sample

    240901-zx5gdasdng

  • MD5

    2a170f4ef7f4d584fce9b7a7b9f9fc00

  • SHA1

    3e230cf803024160b67d78d4dd155c707dcfcd3c

  • SHA256

    36f9b750eddaf10eeac6d756d4a951ac8bc985d8df979253026c179a39465130

  • SHA512

    124b31398406ccdfeaed9fd99003cfd6bf12da55fc34aa1425ff9b12f8f758247262f6c7a0b4efa54ce560eda1e46b82d8fccf060433fb7baebd7d6341d3ec38

  • SSDEEP

    6144:KiQSox53Q3Rj+P8oaHRVdiZQjRBPCr8Yzhe/htdCfiJYHSxKQjZHFR2W52z5rkL/:VQtsjTHvwZQspE/hv28NGBbUjwe

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      36f9b750eddaf10eeac6d756d4a951ac8bc985d8df979253026c179a39465130

    • Size

      1.1MB

    • MD5

      2a170f4ef7f4d584fce9b7a7b9f9fc00

    • SHA1

      3e230cf803024160b67d78d4dd155c707dcfcd3c

    • SHA256

      36f9b750eddaf10eeac6d756d4a951ac8bc985d8df979253026c179a39465130

    • SHA512

      124b31398406ccdfeaed9fd99003cfd6bf12da55fc34aa1425ff9b12f8f758247262f6c7a0b4efa54ce560eda1e46b82d8fccf060433fb7baebd7d6341d3ec38

    • SSDEEP

      6144:KiQSox53Q3Rj+P8oaHRVdiZQjRBPCr8Yzhe/htdCfiJYHSxKQjZHFR2W52z5rkL/:VQtsjTHvwZQspE/hv28NGBbUjwe

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (917) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks