Overview

overview

9

Static

static

7

6b52f3e1c1...0N.exe

windows7-x64

9

6b52f3e1c1...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6b52f3e1c17d9975a1f02b6a996f35b0N.exe

  • Size

    34KB

  • Sample

    240817-txjxsavemc

  • MD5

    6b52f3e1c17d9975a1f02b6a996f35b0

  • SHA1

    1ab72faa47947987f85b4a81500fb7f84f114050

  • SHA256

    220b07787677a84a2649332ea40f0220fb8cd753eeb69c8468a03b72cb76670b

  • SHA512

    9d6e693c51f1ddd79602bc857f13e16623cd495eb394f616d0e4d5d72bec42da9ab784d3b18f57003423ef8fda3e60e7d51d5aecb4b944483dc067cef5fedb2a

  • SSDEEP

    768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQYb:CTW7JJZENTNyQYb

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      6b52f3e1c17d9975a1f02b6a996f35b0N.exe

    • Size

      34KB

    • MD5

      6b52f3e1c17d9975a1f02b6a996f35b0

    • SHA1

      1ab72faa47947987f85b4a81500fb7f84f114050

    • SHA256

      220b07787677a84a2649332ea40f0220fb8cd753eeb69c8468a03b72cb76670b

    • SHA512

      9d6e693c51f1ddd79602bc857f13e16623cd495eb394f616d0e4d5d72bec42da9ab784d3b18f57003423ef8fda3e60e7d51d5aecb4b944483dc067cef5fedb2a

    • SSDEEP

      768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQYb:CTW7JJZENTNyQYb

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3429) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks