Overview

overview

9

Static

static

7

efdb061806...0N.exe

windows7-x64

9

efdb061806...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    efdb061806010e299720946657f3b840N.exe

  • Size

    81KB

  • Sample

    240715-r1bpgaybmf

  • MD5

    efdb061806010e299720946657f3b840

  • SHA1

    a0293e10280e394d7ff053d0e79042854febacc0

  • SHA256

    f1657990185457e7dda29a809cbbf2baf54b224a2198986e57e4e98434404acf

  • SHA512

    ca89bbe709482970b346b6a868abf70a42a32fc66845c2b553ac694da7c85d04abd03d085d847da382cec4674f5ca8b707c7d50b19cbbac3bc7abda62065d752

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxeDNf4y:fnyiQSobDNfF

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      efdb061806010e299720946657f3b840N.exe

    • Size

      81KB

    • MD5

      efdb061806010e299720946657f3b840

    • SHA1

      a0293e10280e394d7ff053d0e79042854febacc0

    • SHA256

      f1657990185457e7dda29a809cbbf2baf54b224a2198986e57e4e98434404acf

    • SHA512

      ca89bbe709482970b346b6a868abf70a42a32fc66845c2b553ac694da7c85d04abd03d085d847da382cec4674f5ca8b707c7d50b19cbbac3bc7abda62065d752

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxeDNf4y:fnyiQSobDNfF

    Score
    9/10
    ransomwareupx

    • Renames multiple (266) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks