Overview

overview

9

Static

static

7

2c1c52e906...e7.exe

windows7-x64

9

2c1c52e906...e7.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2c1c52e906ec5457bd86a96cb1333b4ca4a17cbad45cf45f69826284bf99bee7

  • Size

    73KB

  • Sample

    240811-yjm5haygpb

  • MD5

    56d69131b85a05a3ea3d9ea6db4bcb73

  • SHA1

    c4554085a35cd5bcbfb49271190d7e83ca1f259f

  • SHA256

    2c1c52e906ec5457bd86a96cb1333b4ca4a17cbad45cf45f69826284bf99bee7

  • SHA512

    e5c6d5518373b4abec151c2aaca5a628fc37583c8e0ebd7c1f35e69e71c5705507c0b2d4ddbc2f682b4be3a4671d5539f39c67ee6e9b69c6bacb5a0718180f0e

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOLKc/xJtLJtTG5o3:KQSohsUsUKRo3

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      2c1c52e906ec5457bd86a96cb1333b4ca4a17cbad45cf45f69826284bf99bee7

    • Size

      73KB

    • MD5

      56d69131b85a05a3ea3d9ea6db4bcb73

    • SHA1

      c4554085a35cd5bcbfb49271190d7e83ca1f259f

    • SHA256

      2c1c52e906ec5457bd86a96cb1333b4ca4a17cbad45cf45f69826284bf99bee7

    • SHA512

      e5c6d5518373b4abec151c2aaca5a628fc37583c8e0ebd7c1f35e69e71c5705507c0b2d4ddbc2f682b4be3a4671d5539f39c67ee6e9b69c6bacb5a0718180f0e

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOLKc/xJtLJtTG5o3:KQSohsUsUKRo3

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (789) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks