Overview

overview

9

Static

static

7

10b8e40e8e...dc.exe

windows7-x64

9

10b8e40e8e...dc.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    10b8e40e8e794d78e6459a7b30965cea9c1f36028f8585db5b9eda2321dc10dc

  • Size

    49KB

  • Sample

    240825-xf8flayerg

  • MD5

    163cd6546e212bc3352f6d806cf9d94e

  • SHA1

    83a59d281494f3de54ce6345f00c27c6df659d0b

  • SHA256

    10b8e40e8e794d78e6459a7b30965cea9c1f36028f8585db5b9eda2321dc10dc

  • SHA512

    144711dca7373ef99accd6967cacbd84788abc8c06057280241929842dc298a5492b34b84174a5b424d0c6f418373dac13f3fc739e2535db9f17724f3fbf8730

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx35jtj9:KQSoU

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      10b8e40e8e794d78e6459a7b30965cea9c1f36028f8585db5b9eda2321dc10dc

    • Size

      49KB

    • MD5

      163cd6546e212bc3352f6d806cf9d94e

    • SHA1

      83a59d281494f3de54ce6345f00c27c6df659d0b

    • SHA256

      10b8e40e8e794d78e6459a7b30965cea9c1f36028f8585db5b9eda2321dc10dc

    • SHA512

      144711dca7373ef99accd6967cacbd84788abc8c06057280241929842dc298a5492b34b84174a5b424d0c6f418373dac13f3fc739e2535db9f17724f3fbf8730

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx35jtj9:KQSoU

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3755) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks