Overview

overview

9

Static

static

7

Trojan.Dan...93.exe

windows7-x64

9

Trojan.Dan...93.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    Trojan.Danger.ATA_virussign.com_7150870931ae3a11260ea6f6a0ea7693.exe

  • Size

    90KB

  • Sample

    240907-pz9h1awepc

  • MD5

    7150870931ae3a11260ea6f6a0ea7693

  • SHA1

    e87e710853ab140879c435e3f5e0c6178481f123

  • SHA256

    7103612fddbc43d6fef8570b4c91900e29d63926246f8b98119083b2001e2746

  • SHA512

    ac6c348c9aceb83cb503c8d9e82fcd6ebe05d1b8b4772527f4407fa89831451c1c9fa0dc08556d086dba2dd3d40f1ddbedde0ddc4040cbbdc089f284260ae7fe

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTNyoKIKMHTW7JJZENTNyoKIKMM1P:fny1tE5KIKvtE5KIKv

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      Trojan.Danger.ATA_virussign.com_7150870931ae3a11260ea6f6a0ea7693.exe

    • Size

      90KB

    • MD5

      7150870931ae3a11260ea6f6a0ea7693

    • SHA1

      e87e710853ab140879c435e3f5e0c6178481f123

    • SHA256

      7103612fddbc43d6fef8570b4c91900e29d63926246f8b98119083b2001e2746

    • SHA512

      ac6c348c9aceb83cb503c8d9e82fcd6ebe05d1b8b4772527f4407fa89831451c1c9fa0dc08556d086dba2dd3d40f1ddbedde0ddc4040cbbdc089f284260ae7fe

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTNyoKIKMHTW7JJZENTNyoKIKMM1P:fny1tE5KIKvtE5KIKv

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2848) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks