Overview

overview

9

Static

static

7

d616b61d4f...0N.exe

windows7-x64

9

d616b61d4f...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    d616b61d4f2dc2b47be428befbd4d4b0N.exe

  • Size

    29KB

  • Sample

    240829-bz5cdsyfnl

  • MD5

    d616b61d4f2dc2b47be428befbd4d4b0

  • SHA1

    0a40cc0419d16ae6d94846bd6a3aa570b86359ef

  • SHA256

    0ac764b7cde1a310606024f8fa7c3bff7ae5eb6c014b856eb580647bd45cf34b

  • SHA512

    ee965c585446b8537b8131179fb3fdeef66af21d341039819ebc8982260d193fca6af4889883c5e790be6836d1dba2e0b5c6436674d27e386136818b05b21681

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9cGsGf:CTW7JJ7TyGsGf

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      d616b61d4f2dc2b47be428befbd4d4b0N.exe

    • Size

      29KB

    • MD5

      d616b61d4f2dc2b47be428befbd4d4b0

    • SHA1

      0a40cc0419d16ae6d94846bd6a3aa570b86359ef

    • SHA256

      0ac764b7cde1a310606024f8fa7c3bff7ae5eb6c014b856eb580647bd45cf34b

    • SHA512

      ee965c585446b8537b8131179fb3fdeef66af21d341039819ebc8982260d193fca6af4889883c5e790be6836d1dba2e0b5c6436674d27e386136818b05b21681

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9cGsGf:CTW7JJ7TyGsGf

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (402) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks