Overview

overview

9

Static

static

7

2b307e33f0...0N.exe

windows7-x64

9

2b307e33f0...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2b307e33f0940132a4331b1fcf5d6440N.exe

  • Size

    124KB

  • Sample

    240902-cnkpaazdmg

  • MD5

    2b307e33f0940132a4331b1fcf5d6440

  • SHA1

    4bf051cbc27ee82689516a481fbd7b289e4c3db9

  • SHA256

    32f90c9ac0caed12d8df79832e8a357e4019053169229515909753234dcf94fc

  • SHA512

    a48dd7e1f2b028295f2270f1e27648cf437ec8e9d03ca803f07a8c080977b30cffcba60141867df09510c0c60cc63a9c7da5fade3a95ff42c3a2fa7c57b6e047

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8EVyS4AO2Zp9r/uvAI:fnyiQSowS4AO+fuvAI

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      2b307e33f0940132a4331b1fcf5d6440N.exe

    • Size

      124KB

    • MD5

      2b307e33f0940132a4331b1fcf5d6440

    • SHA1

      4bf051cbc27ee82689516a481fbd7b289e4c3db9

    • SHA256

      32f90c9ac0caed12d8df79832e8a357e4019053169229515909753234dcf94fc

    • SHA512

      a48dd7e1f2b028295f2270f1e27648cf437ec8e9d03ca803f07a8c080977b30cffcba60141867df09510c0c60cc63a9c7da5fade3a95ff42c3a2fa7c57b6e047

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8EVyS4AO2Zp9r/uvAI:fnyiQSowS4AO+fuvAI

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2884) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks