Overview

overview

9

Static

static

7

1ee2393446...0N.exe

windows7-x64

9

1ee2393446...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    1ee239344667b435a948b2406b3a95b0N.exe

  • Size

    40KB

  • Sample

    240907-k8fvtswhla

  • MD5

    1ee239344667b435a948b2406b3a95b0

  • SHA1

    57e42024afe534fe1fd9cf376bc1498862a1f493

  • SHA256

    6cd7360ebe700d2755abf632345779ef3a14f0487b0c03b938193b2adcf7cd62

  • SHA512

    c3e0262747a84007e297d50ce67f6aa05819944c7e976e9f7a1f68d5985d7029572118efc5dd6325f3e660d5bb06f2badf04c8e5199c1c655d292a15f6347fdf

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9nT4PCs2B24PCs2BL27SKNx27SKNz:CTW7JJ7Tx4PN54PNg

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      1ee239344667b435a948b2406b3a95b0N.exe

    • Size

      40KB

    • MD5

      1ee239344667b435a948b2406b3a95b0

    • SHA1

      57e42024afe534fe1fd9cf376bc1498862a1f493

    • SHA256

      6cd7360ebe700d2755abf632345779ef3a14f0487b0c03b938193b2adcf7cd62

    • SHA512

      c3e0262747a84007e297d50ce67f6aa05819944c7e976e9f7a1f68d5985d7029572118efc5dd6325f3e660d5bb06f2badf04c8e5199c1c655d292a15f6347fdf

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9nT4PCs2B24PCs2BL27SKNx27SKNz:CTW7JJ7Tx4PN54PNg

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3422) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks