Overview

overview

9

Static

static

7

cd8b60a6a5...0N.exe

windows7-x64

9

cd8b60a6a5...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    cd8b60a6a5ff694b8491c45fa0cb6c30N.exe

  • Size

    69KB

  • Sample

    240814-dd1heszfqm

  • MD5

    cd8b60a6a5ff694b8491c45fa0cb6c30

  • SHA1

    c9d411e02f7ed6a7e011a6aed38f011591f46333

  • SHA256

    a7b9983f9a69f421b96ac34d740ca5976001ebae07daf4744ff7679ea211cb7a

  • SHA512

    7e4dd888f5fc2bdc9b865eba0a3734123c1c40bdf162597b755ae2452054448b9c8b3eeda1e8da64043ae2b13a66f85e626f30806b9f40aa41f4d1300fcc9fcf

  • SSDEEP

    1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCZ:enaypQSoska

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      cd8b60a6a5ff694b8491c45fa0cb6c30N.exe

    • Size

      69KB

    • MD5

      cd8b60a6a5ff694b8491c45fa0cb6c30

    • SHA1

      c9d411e02f7ed6a7e011a6aed38f011591f46333

    • SHA256

      a7b9983f9a69f421b96ac34d740ca5976001ebae07daf4744ff7679ea211cb7a

    • SHA512

      7e4dd888f5fc2bdc9b865eba0a3734123c1c40bdf162597b755ae2452054448b9c8b3eeda1e8da64043ae2b13a66f85e626f30806b9f40aa41f4d1300fcc9fcf

    • SSDEEP

      1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCZ:enaypQSoska

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3143) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks