b82b80bdaef6c39bb3aab631a7a61c54c2fb1647d5ae8c8aaf6d792fd3eb36c9 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

eebb1db465...0N.exe

windows7-x64

9

eebb1db465...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

eebb1db465bd627cc97bbc3edede0800N.exe
Size

67KB
Sample

240901-sg82astgqp
MD5

eebb1db465bd627cc97bbc3edede0800
SHA1

0198c71871aa663a971883ad420f31d3c26d4587
SHA256

b82b80bdaef6c39bb3aab631a7a61c54c2fb1647d5ae8c8aaf6d792fd3eb36c9
SHA512

648f7b237d0f46528e73b25160615be4165577a95096edb4051e2c287c098169290bd79b786f9ded4c9490e8620da13c63c376768696fd706bf810354366c1a7
SSDEEP

768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiTx4PCs2q:V7Zf/FAxTWoJJ7TTQoQV4PN54PNA

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

eebb1db465bd627cc97bbc3edede0800N.exe

Resource

win7-20240729-en

discovery ransomware upx

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

eebb1db465bd627cc97bbc3edede0800N.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Targets

- Target
  
  eebb1db465bd627cc97bbc3edede0800N.exe
- Size
  
  67KB
- MD5
  
  eebb1db465bd627cc97bbc3edede0800
- SHA1
  
  0198c71871aa663a971883ad420f31d3c26d4587
- SHA256
  
  b82b80bdaef6c39bb3aab631a7a61c54c2fb1647d5ae8c8aaf6d792fd3eb36c9
- SHA512
  
  648f7b237d0f46528e73b25160615be4165577a95096edb4051e2c287c098169290bd79b786f9ded4c9490e8620da13c63c376768696fd706bf810354366c1a7
- SSDEEP
  
  768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiTx4PCs2q:V7Zf/FAxTWoJJ7TTQoQV4PN54PNA
Score

9^/10

discovery ransomware upx
- Renames multiple (2939) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy