Overview

overview

10

Static

static

10

d3aa6ef4ed...85.exe

windows7-x64

9

d3aa6ef4ed...85.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d3aa6ef4ed22d27fe765f48f31d891a09ad2a491b21ada36e69bae06b30a6985

  • Size

    82KB

  • Sample

    240701-dmex3sxfrr

  • MD5

    b65affbc3cea7c730337fdbc9807231b

  • SHA1

    dde8e1effc62ab18b2ce17e119593d299e4083fd

  • SHA256

    d3aa6ef4ed22d27fe765f48f31d891a09ad2a491b21ada36e69bae06b30a6985

  • SHA512

    585eca8d53383f9768a77330fba8d9b203b3686ea9344cc19bf657b64950bd8814be6574fac7fb94814360f03afc8f33d41547de98c6d250eed31d03134166b1

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxFy5gfcL5y5gfcLcwO:fnyiQSoXqeaqe6

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      d3aa6ef4ed22d27fe765f48f31d891a09ad2a491b21ada36e69bae06b30a6985

    • Size

      82KB

    • MD5

      b65affbc3cea7c730337fdbc9807231b

    • SHA1

      dde8e1effc62ab18b2ce17e119593d299e4083fd

    • SHA256

      d3aa6ef4ed22d27fe765f48f31d891a09ad2a491b21ada36e69bae06b30a6985

    • SHA512

      585eca8d53383f9768a77330fba8d9b203b3686ea9344cc19bf657b64950bd8814be6574fac7fb94814360f03afc8f33d41547de98c6d250eed31d03134166b1

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxFy5gfcL5y5gfcLcwO:fnyiQSoXqeaqe6

    Score
    9/10
    ransomwareupx

    • Renames multiple (2832) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks