5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bb | Triage

Submit
Reports

Overview

overview

9

Static

static

7

5fb060b922...bN.exe

windows7-x64

9

5fb060b922...bN.exe

windows10-2004-x64

9

Sharing

General

Target

5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bbN
Size

48KB
Sample

240919-e9wd1s1eqa
MD5

10dc278aeff568ddd1921c7cac994bc0
SHA1

e6a3221e38fd6c6cadea75b03d6f5dc9c067faba
SHA256

5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bb
SHA512

dcbd828fc16fa1736769e605c45555fb3d125940faca55b284df22d5d91ae93341815053eafb73c01910547788bb27de3b9aaf97c392ec70db3783384bc251c2
SSDEEP

768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9AiOi/BT37CPKKdJJ1EXBwzEXBwdcMcI9AiOf:CTW7JJ7TVTW7JJ7Tw

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bbN.exe

Resource

win7-20240903-en

discovery ransomware upx

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bbN.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bbN
- Size
  
  48KB
- MD5
  
  10dc278aeff568ddd1921c7cac994bc0
- SHA1
  
  e6a3221e38fd6c6cadea75b03d6f5dc9c067faba
- SHA256
  
  5fb060b9222d610f57ee7eecd3ef640e4a4084b9c15942ae2de9059818dd70bb
- SHA512
  
  dcbd828fc16fa1736769e605c45555fb3d125940faca55b284df22d5d91ae93341815053eafb73c01910547788bb27de3b9aaf97c392ec70db3783384bc251c2
- SSDEEP
  
  768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9AiOi/BT37CPKKdJJ1EXBwzEXBwdcMcI9AiOf:CTW7JJ7TVTW7JJ7Tw
Score

9^/10

discovery ransomware upx
- Renames multiple (3680) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy