Overview

overview

9

Static

static

7

c1c91dfef1...0N.exe

windows7-x64

9

c1c91dfef1...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c1c91dfef1dfb5509d605074408be530N.exe

  • Size

    63KB

  • Sample

    240904-hh37bsxdna

  • MD5

    c1c91dfef1dfb5509d605074408be530

  • SHA1

    dcc383ee8375d74d9feada84c9d839adddd87564

  • SHA256

    6621db78a44de317ec13ec074032cc9b09081c2625604dffd049e339ac0ff67c

  • SHA512

    a3bad13076d6022253e613a04651b933f77d3ec06c2871fbad8800fc91bcc621ab92fb930552ab7edd68fa6dd2418f00d343bee91f4b95794b2e461d0cf2b3ee

  • SSDEEP

    1536:V7Zf/FAxTWoJJTU3UytJfOKI+h/YI+h/BMJevJea:fny1sI+h/YI+h/Bl

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      c1c91dfef1dfb5509d605074408be530N.exe

    • Size

      63KB

    • MD5

      c1c91dfef1dfb5509d605074408be530

    • SHA1

      dcc383ee8375d74d9feada84c9d839adddd87564

    • SHA256

      6621db78a44de317ec13ec074032cc9b09081c2625604dffd049e339ac0ff67c

    • SHA512

      a3bad13076d6022253e613a04651b933f77d3ec06c2871fbad8800fc91bcc621ab92fb930552ab7edd68fa6dd2418f00d343bee91f4b95794b2e461d0cf2b3ee

    • SSDEEP

      1536:V7Zf/FAxTWoJJTU3UytJfOKI+h/YI+h/BMJevJea:fny1sI+h/YI+h/Bl

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3189) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks