Overview

overview

9

Static

static

7

1008435fc0...0N.exe

windows7-x64

9

1008435fc0...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1008435fc090c6d09831649ad4172d70N.exe

  • Size

    64KB

  • Sample

    240727-2p1vbswbnh

  • MD5

    1008435fc090c6d09831649ad4172d70

  • SHA1

    7fbb8903aa1a20781168591b128abc3b6ed5bb08

  • SHA256

    0b7e1db48e0507fe01e1d86918116ef9dbae0421684b43fcd467e72b70d27c5f

  • SHA512

    f4a60f37fbd1cae590bfe96a73e0f5e4588877edc579be06896de75b8523e5674082008731343f6731084508bc7bc817c49f50596dbe1bbd8dc7187c3a4fab72

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8IZv2v+6o:KQSo7Zv2va

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      1008435fc090c6d09831649ad4172d70N.exe

    • Size

      64KB

    • MD5

      1008435fc090c6d09831649ad4172d70

    • SHA1

      7fbb8903aa1a20781168591b128abc3b6ed5bb08

    • SHA256

      0b7e1db48e0507fe01e1d86918116ef9dbae0421684b43fcd467e72b70d27c5f

    • SHA512

      f4a60f37fbd1cae590bfe96a73e0f5e4588877edc579be06896de75b8523e5674082008731343f6731084508bc7bc817c49f50596dbe1bbd8dc7187c3a4fab72

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8IZv2v+6o:KQSo7Zv2va

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (590) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks