Overview

overview

9

Static

static

7

649e4f7f55...0N.exe

windows7-x64

9

649e4f7f55...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    649e4f7f55403188cbec29c58fa545b0N

  • Size

    56KB

  • Sample

    240911-heaevaxhjf

  • MD5

    649e4f7f55403188cbec29c58fa545b0

  • SHA1

    320ce8020b58ca81e8d27cd7f79aa08ca1c977f6

  • SHA256

    410d89878e8c5fa447e9d6c711f573c7963308e11df0aa9268f9555dbfadf373

  • SHA512

    c76ebc6936120081ece0ae4e1e153061775e363812e9aa5445a86f368d995fb336e99d6ff95ffe5334e9574f09f6c1c90086a9ad52d1045a8a872b0574cea7f6

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjSEXBwzEXBwzYP40g40P:V7Zf/FAxTWCYPLgLP

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      649e4f7f55403188cbec29c58fa545b0N

    • Size

      56KB

    • MD5

      649e4f7f55403188cbec29c58fa545b0

    • SHA1

      320ce8020b58ca81e8d27cd7f79aa08ca1c977f6

    • SHA256

      410d89878e8c5fa447e9d6c711f573c7963308e11df0aa9268f9555dbfadf373

    • SHA512

      c76ebc6936120081ece0ae4e1e153061775e363812e9aa5445a86f368d995fb336e99d6ff95ffe5334e9574f09f6c1c90086a9ad52d1045a8a872b0574cea7f6

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjSEXBwzEXBwzYP40g40P:V7Zf/FAxTWCYPLgLP

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2932) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks