Overview

overview

9

Static

static

7

ba6704651f...0N.exe

windows7-x64

9

ba6704651f...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    ba6704651f47e8c39ccfc649c0904c20N

  • Size

    50KB

  • Sample

    240829-f6a5caxgkr

  • MD5

    ba6704651f47e8c39ccfc649c0904c20

  • SHA1

    07c32376c85fddc2b7564219855f7f7dbbfb0720

  • SHA256

    fd30fc16e39c8c18dd202ca819ef4251e2a0004b5231e4a69a4a5390ce721244

  • SHA512

    f670cc8a4199db30c08eba563e68bffd3d613a19def19aae2f9945dbe0ee8f94f4f66ab1a6184aaadb9032443ecfaedd2fd28f1eed7ea418601a36dae2b1191c

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJBZBZyF/MF/orMalYNRo:V7Zf/FAxTWoJJB7i2JalYNRo

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      ba6704651f47e8c39ccfc649c0904c20N

    • Size

      50KB

    • MD5

      ba6704651f47e8c39ccfc649c0904c20

    • SHA1

      07c32376c85fddc2b7564219855f7f7dbbfb0720

    • SHA256

      fd30fc16e39c8c18dd202ca819ef4251e2a0004b5231e4a69a4a5390ce721244

    • SHA512

      f670cc8a4199db30c08eba563e68bffd3d613a19def19aae2f9945dbe0ee8f94f4f66ab1a6184aaadb9032443ecfaedd2fd28f1eed7ea418601a36dae2b1191c

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJBZBZyF/MF/orMalYNRo:V7Zf/FAxTWoJJB7i2JalYNRo

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3191) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks