Overview

overview

9

Static

static

7

21388e2d90...0N.exe

windows7-x64

9

21388e2d90...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    21388e2d9059a00144b568bea594d1f0N.exe

  • Size

    90KB

  • Sample

    240901-1mwbdssenj

  • MD5

    21388e2d9059a00144b568bea594d1f0

  • SHA1

    e2a0398b0b773e4a3b3dc70e4fd67bfc0b976b73

  • SHA256

    42070bf9ef37571c12244c1509c58c6cd30d9ad91e6262572fe0607a074e25c5

  • SHA512

    7ef70385f76cf7606a916c37e0e6ccde61ac27a5d393bb6610744f41db44c4da66b821862a2d7436f912515675bbc4ad906f11d9a289505eaea0c3b12d8f0b0f

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsJOLKc/xJtLJtTGK5:fnyiQSohsUsUKC5

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      21388e2d9059a00144b568bea594d1f0N.exe

    • Size

      90KB

    • MD5

      21388e2d9059a00144b568bea594d1f0

    • SHA1

      e2a0398b0b773e4a3b3dc70e4fd67bfc0b976b73

    • SHA256

      42070bf9ef37571c12244c1509c58c6cd30d9ad91e6262572fe0607a074e25c5

    • SHA512

      7ef70385f76cf7606a916c37e0e6ccde61ac27a5d393bb6610744f41db44c4da66b821862a2d7436f912515675bbc4ad906f11d9a289505eaea0c3b12d8f0b0f

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsJOLKc/xJtLJtTGK5:fnyiQSohsUsUKC5

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3019) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks