Overview

overview

9

Static

static

7

8995fd9d84...0N.exe

windows7-x64

9

8995fd9d84...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8995fd9d84273b0c93357af523574fb0N.exe

  • Size

    81KB

  • Sample

    240813-2gv9wazdlb

  • MD5

    8995fd9d84273b0c93357af523574fb0

  • SHA1

    6ef6e3db6cd6a4403d43573d9f79bf6995d77817

  • SHA256

    3cfa160e709e7420665dcf4f40cbf3fdafeb42cb933b5cbc1ca6835422c35ff6

  • SHA512

    811330b604b2a25c9f77116e772890d95299cc25858758c7257c48e4cde7a7ca40d8a82bbb10faadb0ff2dcaf2f6e2bd6067d2a931dbb05e7cae5c514cf1a005

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxQiV:fnyiQSou

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      8995fd9d84273b0c93357af523574fb0N.exe

    • Size

      81KB

    • MD5

      8995fd9d84273b0c93357af523574fb0

    • SHA1

      6ef6e3db6cd6a4403d43573d9f79bf6995d77817

    • SHA256

      3cfa160e709e7420665dcf4f40cbf3fdafeb42cb933b5cbc1ca6835422c35ff6

    • SHA512

      811330b604b2a25c9f77116e772890d95299cc25858758c7257c48e4cde7a7ca40d8a82bbb10faadb0ff2dcaf2f6e2bd6067d2a931dbb05e7cae5c514cf1a005

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxQiV:fnyiQSou

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3113) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks