Overview

overview

9

Static

static

7

9fad39827c...0N.exe

windows7-x64

9

9fad39827c...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    9fad39827c119b55ad8d86a93c333870N.exe

  • Size

    45KB

  • Sample

    240727-g23jga1frq

  • MD5

    9fad39827c119b55ad8d86a93c333870

  • SHA1

    56b54228115e8a670d8a5ddbd27614ae9452ba7d

  • SHA256

    0b4477067df31f69460cf4060dd5a920013c8a19e5e25d7ddab5ca5232a00f44

  • SHA512

    2095593916fd9d6cafeff78510a645c51db23452f06cf5d5369be9457e5e448913f5e76254ed8bfce6523da143c5a67242f1a50365f28d41e95c113827966150

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNy1:V7Zf/FAxTWoJJZENTNy1

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      9fad39827c119b55ad8d86a93c333870N.exe

    • Size

      45KB

    • MD5

      9fad39827c119b55ad8d86a93c333870

    • SHA1

      56b54228115e8a670d8a5ddbd27614ae9452ba7d

    • SHA256

      0b4477067df31f69460cf4060dd5a920013c8a19e5e25d7ddab5ca5232a00f44

    • SHA512

      2095593916fd9d6cafeff78510a645c51db23452f06cf5d5369be9457e5e448913f5e76254ed8bfce6523da143c5a67242f1a50365f28d41e95c113827966150

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNy1:V7Zf/FAxTWoJJZENTNy1

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (1501) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks