Overview

overview

9

Static

static

7

ba061cecd6...0N.exe

windows7-x64

9

ba061cecd6...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    ba061cecd6f3db6340f97b0938b1ba80N.exe

  • Size

    90KB

  • Sample

    240906-lhpwgsyhle

  • MD5

    ba061cecd6f3db6340f97b0938b1ba80

  • SHA1

    0fce2b0c003846cf9b1ecc7e245434bc1718ba46

  • SHA256

    bffd34862627598c770e30a01c0a626c63e433d8033d608391e92312944e93e8

  • SHA512

    1a2b60689ee04c74f438c673a612705f8824ff981e3b4f8e09fd02f70366473fcf3da24f8fc773d33dfd174939a4a1e9412bf03cdab68b4a14207cf6770d9ddc

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxY5bSY5NK:fnyiQSox552

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      ba061cecd6f3db6340f97b0938b1ba80N.exe

    • Size

      90KB

    • MD5

      ba061cecd6f3db6340f97b0938b1ba80

    • SHA1

      0fce2b0c003846cf9b1ecc7e245434bc1718ba46

    • SHA256

      bffd34862627598c770e30a01c0a626c63e433d8033d608391e92312944e93e8

    • SHA512

      1a2b60689ee04c74f438c673a612705f8824ff981e3b4f8e09fd02f70366473fcf3da24f8fc773d33dfd174939a4a1e9412bf03cdab68b4a14207cf6770d9ddc

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxY5bSY5NK:fnyiQSox552

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3082) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks