Overview

overview

9

Static

static

7

cceb50fd37...b7.exe

windows7-x64

9

cceb50fd37...b7.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cceb50fd37251a40439a37d5159cc11d052a14cce28075790871cf90dd96e8b7

  • Size

    43KB

  • Sample

    240727-efmj1swarm

  • MD5

    e01c1638bacf8a0afcbbc610f094980c

  • SHA1

    cab1b1140732829bafcb6c6c29715884e5047f3d

  • SHA256

    cceb50fd37251a40439a37d5159cc11d052a14cce28075790871cf90dd96e8b7

  • SHA512

    52f26ae25bfd84090bd2c4a5b3e12c03632848231a6402fe59c1d552264558ac4cc32b3dfb7d63a1141136c27ecc0e669ff22c69a1ec21a6529f02ebd0db3406

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBN:V7Zf/FAxTWoJJZENTBN

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      cceb50fd37251a40439a37d5159cc11d052a14cce28075790871cf90dd96e8b7

    • Size

      43KB

    • MD5

      e01c1638bacf8a0afcbbc610f094980c

    • SHA1

      cab1b1140732829bafcb6c6c29715884e5047f3d

    • SHA256

      cceb50fd37251a40439a37d5159cc11d052a14cce28075790871cf90dd96e8b7

    • SHA512

      52f26ae25bfd84090bd2c4a5b3e12c03632848231a6402fe59c1d552264558ac4cc32b3dfb7d63a1141136c27ecc0e669ff22c69a1ec21a6529f02ebd0db3406

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBN:V7Zf/FAxTWoJJZENTBN

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (1653) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks