Overview

overview

9

Static

static

7

cf1d355789...41.exe

windows7-x64

9

cf1d355789...41.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    cf1d3557898a39496f6137f43c55b6b5f966b5b418559e285b3428d2ef661e41

  • Size

    66KB

  • Sample

    240726-d7estaxdle

  • MD5

    af50320a894a76f598e6ebc3aed1dfb0

  • SHA1

    3ee6ce55f351f8c6001ab80100f27bfbfd8b5280

  • SHA256

    cf1d3557898a39496f6137f43c55b6b5f966b5b418559e285b3428d2ef661e41

  • SHA512

    b860afd4832bac41685d402cd351342f7f47c8712e476452a62732d2ab6c01daf9c5acace55e05e9969281f917ea5729f8460cd0890acbedf1bdec3f4d3e3538

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBQKb9VuUdjqZr7:V7Zf/FAxTWoJJZENTBQo9EUdjqlSi

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      cf1d3557898a39496f6137f43c55b6b5f966b5b418559e285b3428d2ef661e41

    • Size

      66KB

    • MD5

      af50320a894a76f598e6ebc3aed1dfb0

    • SHA1

      3ee6ce55f351f8c6001ab80100f27bfbfd8b5280

    • SHA256

      cf1d3557898a39496f6137f43c55b6b5f966b5b418559e285b3428d2ef661e41

    • SHA512

      b860afd4832bac41685d402cd351342f7f47c8712e476452a62732d2ab6c01daf9c5acace55e05e9969281f917ea5729f8460cd0890acbedf1bdec3f4d3e3538

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBQKb9VuUdjqZr7:V7Zf/FAxTWoJJZENTBQo9EUdjqlSi

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (504) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks