Overview

overview

9

Static

static

7

2422a959a7...0c.exe

windows7-x64

9

2422a959a7...0c.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2422a959a721ca329cd109c42653623c9c35509723b441c921b2b572a9c5ef0c

  • Size

    52KB

  • Sample

    240828-ypsxyatald

  • MD5

    5e649222488cf5f6ca664c38b8e13185

  • SHA1

    239cee19047a6df6a2d8ec1ee83eee950339c28f

  • SHA256

    2422a959a721ca329cd109c42653623c9c35509723b441c921b2b572a9c5ef0c

  • SHA512

    ed9074673a0e2246e95fd5aa818e02b6a8b1771e64d5be568d6dd3bf6df8564b1482989cb2d287942952eeb20d1eafdb80abdc5d4bc4dd2f0e4e9398e9d19b75

  • SSDEEP

    768:a7BlpyqaFAK65euBT37CPKKDm7EJJcbQbf1Oti1JGBQOOiQJhATNyIHAJvHAJLM6:a7ZyqaFAxTWbJJZENTNy3DZ2

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      2422a959a721ca329cd109c42653623c9c35509723b441c921b2b572a9c5ef0c

    • Size

      52KB

    • MD5

      5e649222488cf5f6ca664c38b8e13185

    • SHA1

      239cee19047a6df6a2d8ec1ee83eee950339c28f

    • SHA256

      2422a959a721ca329cd109c42653623c9c35509723b441c921b2b572a9c5ef0c

    • SHA512

      ed9074673a0e2246e95fd5aa818e02b6a8b1771e64d5be568d6dd3bf6df8564b1482989cb2d287942952eeb20d1eafdb80abdc5d4bc4dd2f0e4e9398e9d19b75

    • SSDEEP

      768:a7BlpyqaFAK65euBT37CPKKDm7EJJcbQbf1Oti1JGBQOOiQJhATNyIHAJvHAJLM6:a7ZyqaFAxTWbJJZENTNy3DZ2

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3749) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks