Overview

overview

9

Static

static

7

fee3baa487...a4.exe

windows7-x64

9

fee3baa487...a4.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fee3baa48719dbbea2fa4b20ce51171c6e7ab9059e56233b5685a38d91fdb6a4

  • Size

    48KB

  • Sample

    240726-gqdqzatdrc

  • MD5

    bff85d89cd9a4f0aab36215f943c83b0

  • SHA1

    e49ecfb06e9cf4a31b5ec7acbad577aad501b3a8

  • SHA256

    fee3baa48719dbbea2fa4b20ce51171c6e7ab9059e56233b5685a38d91fdb6a4

  • SHA512

    edb08e1cc53e10a7759919f1ecb6e5fd931726ba24a4bacd7cb038c87bf4d13c11e1dca43506815683f659af140bff8bd2c8da4372c7887f8c25c34baf6e5318

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBnpDoOQOIiJfoY:V7Zf/FAxTWoJJZENTBnp3pb

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      fee3baa48719dbbea2fa4b20ce51171c6e7ab9059e56233b5685a38d91fdb6a4

    • Size

      48KB

    • MD5

      bff85d89cd9a4f0aab36215f943c83b0

    • SHA1

      e49ecfb06e9cf4a31b5ec7acbad577aad501b3a8

    • SHA256

      fee3baa48719dbbea2fa4b20ce51171c6e7ab9059e56233b5685a38d91fdb6a4

    • SHA512

      edb08e1cc53e10a7759919f1ecb6e5fd931726ba24a4bacd7cb038c87bf4d13c11e1dca43506815683f659af140bff8bd2c8da4372c7887f8c25c34baf6e5318

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBnpDoOQOIiJfoY:V7Zf/FAxTWoJJZENTBnp3pb

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (951) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks