Overview

overview

9

Static

static

7

8d0c016497...0N.exe

windows7-x64

9

8d0c016497...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    8d0c016497f46ff125ccc4b2247d7610N.exe

  • Size

    57KB

  • Sample

    240816-23m6dswern

  • MD5

    8d0c016497f46ff125ccc4b2247d7610

  • SHA1

    72945122745b5d14f409dd2ccb01b73ce0027814

  • SHA256

    b6da22df721266d0743bb17963bb334f7e1f955fce7fdcfc584daf6aab676c43

  • SHA512

    5c3669c5b8142093c1383741cf2256e84b45bf57b2557d935ec186cdb07d151d93db97e438e9f6384f8f73816072a108aad859bc24129a0d698e6126bf2370c6

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBWvyBh85c5rJz:V7Zf/FAxTWoJJZENTBWv361Jz

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      8d0c016497f46ff125ccc4b2247d7610N.exe

    • Size

      57KB

    • MD5

      8d0c016497f46ff125ccc4b2247d7610

    • SHA1

      72945122745b5d14f409dd2ccb01b73ce0027814

    • SHA256

      b6da22df721266d0743bb17963bb334f7e1f955fce7fdcfc584daf6aab676c43

    • SHA512

      5c3669c5b8142093c1383741cf2256e84b45bf57b2557d935ec186cdb07d151d93db97e438e9f6384f8f73816072a108aad859bc24129a0d698e6126bf2370c6

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBWvyBh85c5rJz:V7Zf/FAxTWoJJZENTBWv361Jz

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3330) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks