Overview

overview

9

Static

static

7

0248b13572...0N.exe

windows7-x64

9

0248b13572...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    0248b1357293c113579c511352e9fed0N.exe

  • Size

    81KB

  • Sample

    240819-qppxaawerh

  • MD5

    0248b1357293c113579c511352e9fed0

  • SHA1

    3af92c3e0a8c9ef57c6c385fcdc97d3f9eebe0e1

  • SHA256

    a25ecdca7302d83505ad6af9c04a9f7df7a9ff87f7dcedd986f6bb10409acc7a

  • SHA512

    39959cf42e94033e2c6affb5c4816c8f8e34e36ccdd4434b6a6a39eeb4f7af8f9c8b0941a1cff3e2c0a535c8332e06d1935d42e02723b92a9be390dd4b322604

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxY5AQG:fnyiQSox5AQG

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      0248b1357293c113579c511352e9fed0N.exe

    • Size

      81KB

    • MD5

      0248b1357293c113579c511352e9fed0

    • SHA1

      3af92c3e0a8c9ef57c6c385fcdc97d3f9eebe0e1

    • SHA256

      a25ecdca7302d83505ad6af9c04a9f7df7a9ff87f7dcedd986f6bb10409acc7a

    • SHA512

      39959cf42e94033e2c6affb5c4816c8f8e34e36ccdd4434b6a6a39eeb4f7af8f9c8b0941a1cff3e2c0a535c8332e06d1935d42e02723b92a9be390dd4b322604

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxY5AQG:fnyiQSox5AQG

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3683) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks