Overview

overview

9

Static

static

7

a416b5c078...0N.exe

windows7-x64

9

a416b5c078...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    a416b5c07845663197519b55db13ed70N.exe

  • Size

    640KB

  • Sample

    240904-ztfnvawdpm

  • MD5

    a416b5c07845663197519b55db13ed70

  • SHA1

    a8e3339ffc8eb911068fe63b0d84fdc12ccd6035

  • SHA256

    d677b196a3540100e3c7b382e80ad7bca5706b6ddb5666d8e7f496aa9ac198d5

  • SHA512

    9267e6c7db0d50fd382903e37e788b9b55000ac2449509e0a43e7f829811d94ade02795f4b133bc38afd1f6ea0e8693c1f4fe7dcb96b1e64a13ce961bf16bc41

  • SSDEEP

    6144:KclrN8pu1G4LciJJ+bB71VFE2anH73wuMsItyfD1mce:RhLciJJYBRVFEfH7gzsGI1mce

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      a416b5c07845663197519b55db13ed70N.exe

    • Size

      640KB

    • MD5

      a416b5c07845663197519b55db13ed70

    • SHA1

      a8e3339ffc8eb911068fe63b0d84fdc12ccd6035

    • SHA256

      d677b196a3540100e3c7b382e80ad7bca5706b6ddb5666d8e7f496aa9ac198d5

    • SHA512

      9267e6c7db0d50fd382903e37e788b9b55000ac2449509e0a43e7f829811d94ade02795f4b133bc38afd1f6ea0e8693c1f4fe7dcb96b1e64a13ce961bf16bc41

    • SSDEEP

      6144:KclrN8pu1G4LciJJ+bB71VFE2anH73wuMsItyfD1mce:RhLciJJYBRVFEfH7gzsGI1mce

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (1223) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks