Overview

overview

9

Static

static

7

31d765250a...0N.exe

windows7-x64

9

31d765250a...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31d765250a0db06b51e7c09cc6532000N.exe

  • Size

    99KB

  • Sample

    240909-bmr7asxclc

  • MD5

    31d765250a0db06b51e7c09cc6532000

  • SHA1

    2dd31f1eef095a2768f32631528b67204c3c08ee

  • SHA256

    e5fa0a53d33cd690fccbdedee36a22e4dab76389334381f9896de14f98157bbc

  • SHA512

    487e297f304c246afa1129bd1a0ef9724bdc2d8533a2824651d69918411d262113e822ab34cdc7b0e90e2dbb172e8b175007a57ab9b45f381aa6e2be05e68c64

  • SSDEEP

    1536:V7Zf/FAxTWoJJTU3UytJfOL7bTW7JJTU3UytJfOL7t:fny1yb

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      31d765250a0db06b51e7c09cc6532000N.exe

    • Size

      99KB

    • MD5

      31d765250a0db06b51e7c09cc6532000

    • SHA1

      2dd31f1eef095a2768f32631528b67204c3c08ee

    • SHA256

      e5fa0a53d33cd690fccbdedee36a22e4dab76389334381f9896de14f98157bbc

    • SHA512

      487e297f304c246afa1129bd1a0ef9724bdc2d8533a2824651d69918411d262113e822ab34cdc7b0e90e2dbb172e8b175007a57ab9b45f381aa6e2be05e68c64

    • SSDEEP

      1536:V7Zf/FAxTWoJJTU3UytJfOL7bTW7JJTU3UytJfOL7t:fny1yb

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2835) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks