Overview

overview

9

Static

static

7

45886bb651...0N.exe

windows7-x64

9

45886bb651...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    45886bb6518458b16a5410bb2929bc90N.exe

  • Size

    65KB

  • Sample

    240825-y8jtdavcrl

  • MD5

    45886bb6518458b16a5410bb2929bc90

  • SHA1

    8ea81e3e13cace52f92055868b5b222dc08a045a

  • SHA256

    af3cf3b99a4def136b8db5dec09083d9f1c6f55ee55a6dc42f34593b6464ae71

  • SHA512

    eb68b77cb6c30d376493d14381cb2a2ed1b4fbef9c3e1a34d660dac4826b60e84fe76cde26d0269db33ec7c418d439bbbcdd79e855546f1d974434a83d3a2631

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY5a8CsL:KQSox5a8p

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      45886bb6518458b16a5410bb2929bc90N.exe

    • Size

      65KB

    • MD5

      45886bb6518458b16a5410bb2929bc90

    • SHA1

      8ea81e3e13cace52f92055868b5b222dc08a045a

    • SHA256

      af3cf3b99a4def136b8db5dec09083d9f1c6f55ee55a6dc42f34593b6464ae71

    • SHA512

      eb68b77cb6c30d376493d14381cb2a2ed1b4fbef9c3e1a34d660dac4826b60e84fe76cde26d0269db33ec7c418d439bbbcdd79e855546f1d974434a83d3a2631

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY5a8CsL:KQSox5a8p

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3289) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks