Overview

overview

9

Static

static

7

0c6a87b44b...f4.exe

windows7-x64

9

0c6a87b44b...f4.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    0c6a87b44bac6bd196acffda769a2cb60adc600cc064a47d9876692416104df4.exe

  • Size

    62KB

  • Sample

    240527-xdwc9aeh84

  • MD5

    7ed5e2426dd840509bfb6663650a1407

  • SHA1

    238dfcdefb5b226b206996bcd88e317ba44d5d24

  • SHA256

    0c6a87b44bac6bd196acffda769a2cb60adc600cc064a47d9876692416104df4

  • SHA512

    97ac0deb4e5824e3e22a52e6297c5bcd9e61ef65de77fbc78f3a1426aa479347215087ec2e5ea4e6c154b354a64a50f0a164af2b174ef47bc598c9895fa7b0c4

  • SSDEEP

    768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFufGWQM8:67Zf/FAxTWY1++PJHJXA/OsIZ77mm

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      0c6a87b44bac6bd196acffda769a2cb60adc600cc064a47d9876692416104df4.exe

    • Size

      62KB

    • MD5

      7ed5e2426dd840509bfb6663650a1407

    • SHA1

      238dfcdefb5b226b206996bcd88e317ba44d5d24

    • SHA256

      0c6a87b44bac6bd196acffda769a2cb60adc600cc064a47d9876692416104df4

    • SHA512

      97ac0deb4e5824e3e22a52e6297c5bcd9e61ef65de77fbc78f3a1426aa479347215087ec2e5ea4e6c154b354a64a50f0a164af2b174ef47bc598c9895fa7b0c4

    • SSDEEP

      768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFufGWQM8:67Zf/FAxTWY1++PJHJXA/OsIZ77mm

    Score
    9/10
    ransomwareupx

    • Renames multiple (3510) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks