Overview

overview

9

Static

static

7

4be5db226c...0N.exe

windows7-x64

9

4be5db226c...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    4be5db226c388634bc9aabb8278a7480N.exe

  • Size

    93KB

  • Sample

    240724-fawfea1hkg

  • MD5

    4be5db226c388634bc9aabb8278a7480

  • SHA1

    717e223d5d39e11be7a78814f8daead812f2d7cb

  • SHA256

    3e54c9150ae8e920fce3fe1fc17d2e8ec68e89ad1dfbd89476b1b5db76b87fc4

  • SHA512

    318e6bc2a1d2e77ad27df70d80ae539e1e8bd75cc650922b8eb2035bef2b2aaf3b24f4c390c1338e959857141cbff757b05c3d514cbbebc7cb7e5dadd3662fab

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxviYiaEnX8OY8Oe:fnyiQSo4iYiiOJOe

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      4be5db226c388634bc9aabb8278a7480N.exe

    • Size

      93KB

    • MD5

      4be5db226c388634bc9aabb8278a7480

    • SHA1

      717e223d5d39e11be7a78814f8daead812f2d7cb

    • SHA256

      3e54c9150ae8e920fce3fe1fc17d2e8ec68e89ad1dfbd89476b1b5db76b87fc4

    • SHA512

      318e6bc2a1d2e77ad27df70d80ae539e1e8bd75cc650922b8eb2035bef2b2aaf3b24f4c390c1338e959857141cbff757b05c3d514cbbebc7cb7e5dadd3662fab

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxviYiaEnX8OY8Oe:fnyiQSo4iYiiOJOe

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2846) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks