Overview

overview

9

Static

static

7

28e545593d...0N.exe

windows7-x64

9

28e545593d...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    28e545593d4704e414bf0226c67bf060N.exe

  • Size

    43KB

  • Sample

    240724-avdhfa1bng

  • MD5

    28e545593d4704e414bf0226c67bf060

  • SHA1

    974c748cfa49f698fff0fc7c3281aab77eb00ddb

  • SHA256

    cf9afbfe06e22e4d414f8aa59073f738205263d81a842ec58f2d23983a5190f6

  • SHA512

    1ef09e5914f3e0148ae4d05efdc5d7ef542bb8face6bfc4b2a81c2191ffafbc2af12572812889f99fa5c8249756ba22b24f4297603bcd267b34c208329abd172

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNyYQ:V7Zf/FAxTWoJJZENTNyV

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      28e545593d4704e414bf0226c67bf060N.exe

    • Size

      43KB

    • MD5

      28e545593d4704e414bf0226c67bf060

    • SHA1

      974c748cfa49f698fff0fc7c3281aab77eb00ddb

    • SHA256

      cf9afbfe06e22e4d414f8aa59073f738205263d81a842ec58f2d23983a5190f6

    • SHA512

      1ef09e5914f3e0148ae4d05efdc5d7ef542bb8face6bfc4b2a81c2191ffafbc2af12572812889f99fa5c8249756ba22b24f4297603bcd267b34c208329abd172

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNyYQ:V7Zf/FAxTWoJJZENTNyV

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3063) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks