Overview

overview

9

Static

static

7

c21d168154...0N.exe

windows7-x64

9

c21d168154...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    c21d168154d45edecefa3c29e4537bc0N.exe

  • Size

    109KB

  • Sample

    240816-186dgs1aqh

  • MD5

    c21d168154d45edecefa3c29e4537bc0

  • SHA1

    847050e0baa6977fc5f6a10a9877f31e580b2837

  • SHA256

    636a884f10dce61c981c54b0a6e8d04a7eeb33b978a24aa4da0343029a50b087

  • SHA512

    c23e31269ab2ce8e26daad0ac5887b43ee89d4ed93fd4cc464f2f8fe1f92184dedf61a8ae7ace2f5e7547105ab77631ab8f4888f3da1e64498f90b68fdda4314

  • SSDEEP

    3072:fnyiQSo7Zf2X0yKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kCoIfL2Yi:KiQSoV2H

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      c21d168154d45edecefa3c29e4537bc0N.exe

    • Size

      109KB

    • MD5

      c21d168154d45edecefa3c29e4537bc0

    • SHA1

      847050e0baa6977fc5f6a10a9877f31e580b2837

    • SHA256

      636a884f10dce61c981c54b0a6e8d04a7eeb33b978a24aa4da0343029a50b087

    • SHA512

      c23e31269ab2ce8e26daad0ac5887b43ee89d4ed93fd4cc464f2f8fe1f92184dedf61a8ae7ace2f5e7547105ab77631ab8f4888f3da1e64498f90b68fdda4314

    • SSDEEP

      3072:fnyiQSo7Zf2X0yKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kCoIfL2Yi:KiQSoV2H

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2844) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks