Overview

overview

9

Static

static

7

1a8664e952...cc.exe

windows7-x64

9

1a8664e952...cc.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a8664e95272f11b81f8fa8f5f57a8aca9c6c6ac4cfc0d9609b8480385cc6ecc

  • Size

    45KB

  • Sample

    240818-xsh2gayhke

  • MD5

    a86744ad2596957e545bf74d0c29a426

  • SHA1

    49de4f8e8d61e17ff2a0e6f77c60687cabf2c6e2

  • SHA256

    1a8664e95272f11b81f8fa8f5f57a8aca9c6c6ac4cfc0d9609b8480385cc6ecc

  • SHA512

    a082e493b1beb9360bcf8712bc3d5c823b2591a0e1d4a6f1948c7b9961ae2e16f69df07718da3845b5a3d927ed10ff5c7219e2fde686ccc5c768aa69be245d36

  • SSDEEP

    384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjeYDTcYDTwWsqWsYyk+ym:V7Blpf/FAK65euBT37CPKK0SjuWFWY

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      1a8664e95272f11b81f8fa8f5f57a8aca9c6c6ac4cfc0d9609b8480385cc6ecc

    • Size

      45KB

    • MD5

      a86744ad2596957e545bf74d0c29a426

    • SHA1

      49de4f8e8d61e17ff2a0e6f77c60687cabf2c6e2

    • SHA256

      1a8664e95272f11b81f8fa8f5f57a8aca9c6c6ac4cfc0d9609b8480385cc6ecc

    • SHA512

      a082e493b1beb9360bcf8712bc3d5c823b2591a0e1d4a6f1948c7b9961ae2e16f69df07718da3845b5a3d927ed10ff5c7219e2fde686ccc5c768aa69be245d36

    • SSDEEP

      384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjeYDTcYDTwWsqWsYyk+ym:V7Blpf/FAK65euBT37CPKK0SjuWFWY

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3758) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks