Overview

overview

9

Static

static

7

48c1a80ebe...0N.exe

windows7-x64

9

48c1a80ebe...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    48c1a80ebe58d9387260c106830c8100N.exe

  • Size

    52KB

  • Sample

    240813-vzvyha1fmq

  • MD5

    48c1a80ebe58d9387260c106830c8100

  • SHA1

    fad1aa911c2a1597f17c47a2ee8457523ecc6f95

  • SHA256

    92ae11c43a3e8e0ac67d9028a16565d063f81915855dd555083094cebec15690

  • SHA512

    3af0a1f2b5e5cf09f11f36983b40586a21806cc41d92f964b223f0229b4b35dfe856f1446364a182590859b6a9ce42a5d7a7158125206863d99f4bf90022b224

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNydWK9WKjm2:V7Zf/FAxTWoJJZENTNyoKIK62

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      48c1a80ebe58d9387260c106830c8100N.exe

    • Size

      52KB

    • MD5

      48c1a80ebe58d9387260c106830c8100

    • SHA1

      fad1aa911c2a1597f17c47a2ee8457523ecc6f95

    • SHA256

      92ae11c43a3e8e0ac67d9028a16565d063f81915855dd555083094cebec15690

    • SHA512

      3af0a1f2b5e5cf09f11f36983b40586a21806cc41d92f964b223f0229b4b35dfe856f1446364a182590859b6a9ce42a5d7a7158125206863d99f4bf90022b224

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNydWK9WKjm2:V7Zf/FAxTWoJJZENTNyoKIK62

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3163) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks