Overview

overview

9

Static

static

7

b67fe0fa9b...2b.exe

windows7-x64

9

b67fe0fa9b...2b.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    b67fe0fa9b4d0d21f950a1c0da37ab3de325aac2f42eef8545e53600c970ef2b

  • Size

    50KB

  • Sample

    240806-b5lggazbjh

  • MD5

    33e9663a5217ef5ab03a90c9955be86e

  • SHA1

    6f066c535854cd9d7205b63aa84e9bb3a9aea27a

  • SHA256

    b67fe0fa9b4d0d21f950a1c0da37ab3de325aac2f42eef8545e53600c970ef2b

  • SHA512

    067c8c83f57b04b211500e1afd3ec5752e9d20483fcaaae1d6aaf4c4995e2403dea62a59882434d71d8dce28cc3d159ba755827262bd4e24f100386f0ac9df10

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjSEXBwzEXBw3rgrMqpYpRANqAJxMrAJyqAJxMrA/:V7Zf/FAxTWM2MqpYpF

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      b67fe0fa9b4d0d21f950a1c0da37ab3de325aac2f42eef8545e53600c970ef2b

    • Size

      50KB

    • MD5

      33e9663a5217ef5ab03a90c9955be86e

    • SHA1

      6f066c535854cd9d7205b63aa84e9bb3a9aea27a

    • SHA256

      b67fe0fa9b4d0d21f950a1c0da37ab3de325aac2f42eef8545e53600c970ef2b

    • SHA512

      067c8c83f57b04b211500e1afd3ec5752e9d20483fcaaae1d6aaf4c4995e2403dea62a59882434d71d8dce28cc3d159ba755827262bd4e24f100386f0ac9df10

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjSEXBwzEXBw3rgrMqpYpRANqAJxMrAJyqAJxMrA/:V7Zf/FAxTWM2MqpYpF

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3754) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks