3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7 | Triage

Submit
Reports

Overview

overview

9

Static

static

5

3b5bb46cb2...7N.exe

windows7-x64

9

3b5bb46cb2...7N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7N
Size

111KB
Sample

241004-zgrwcazcna
MD5

05009f1fb0fab91066062e02d661c880
SHA1

af29e9c5df9e89ebd2d5e170284ce9feac542095
SHA256

3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7
SHA512

ea7d3492a1509d8b064d0a05b907d0609ed81776294dfb8ce9d0021528cd0777857709ac7f5d15f42f936a8c3c72a4e94e35623b6fb082fbe6217d065e72a3c4
SSDEEP

1536:CTWUnMdyGdy4AnAP4YrNTWUnMdyGdy4AnAP4YroO3:SnpATrDnpATrn

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7N.exe

Resource

win7-20240903-en

discovery ransomware upx

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7N.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7N
- Size
  
  111KB
- MD5
  
  05009f1fb0fab91066062e02d661c880
- SHA1
  
  af29e9c5df9e89ebd2d5e170284ce9feac542095
- SHA256
  
  3b5bb46cb29d5b6583c1acae386e9bf9f78930800fec015dd1649fbfc79a35f7
- SHA512
  
  ea7d3492a1509d8b064d0a05b907d0609ed81776294dfb8ce9d0021528cd0777857709ac7f5d15f42f936a8c3c72a4e94e35623b6fb082fbe6217d065e72a3c4
- SSDEEP
  
  1536:CTWUnMdyGdy4AnAP4YrNTWUnMdyGdy4AnAP4YroO3:SnpATrDnpATrn
Score

9^/10

discovery ransomware upx
- Renames multiple (348) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy