Overview

overview

9

Static

static

7

f5a9a38226...0N.exe

windows7-x64

9

f5a9a38226...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    f5a9a3822676501f339a39abacdfd970N.exe

  • Size

    37KB

  • Sample

    240907-hcfh3szdnh

  • MD5

    f5a9a3822676501f339a39abacdfd970

  • SHA1

    fb3f00b93719732167084ef0601d37bd2c0e8a75

  • SHA256

    5cabdaee88429a8f17428349ceb5f901a6912db015e816189a392bbdb0ee5ace

  • SHA512

    6da5da7023cdca5d46404dba84e8ceb53e0045f6eefd6303fc329154db7dbc63347b0cdc96bca5c4911f2e306c680ab88361ea38757b153762155814ffa04d32

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tih3y3uP9Py:CTW7JJ7TTQoQh3y3H

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      f5a9a3822676501f339a39abacdfd970N.exe

    • Size

      37KB

    • MD5

      f5a9a3822676501f339a39abacdfd970

    • SHA1

      fb3f00b93719732167084ef0601d37bd2c0e8a75

    • SHA256

      5cabdaee88429a8f17428349ceb5f901a6912db015e816189a392bbdb0ee5ace

    • SHA512

      6da5da7023cdca5d46404dba84e8ceb53e0045f6eefd6303fc329154db7dbc63347b0cdc96bca5c4911f2e306c680ab88361ea38757b153762155814ffa04d32

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tih3y3uP9Py:CTW7JJ7TTQoQh3y3H

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3316) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks