Overview

overview

9

Static

static

7

198b6a9e7b...89.exe

windows7-x64

9

198b6a9e7b...89.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    198b6a9e7b200e729b0c938ade05bd4f0cdd6ae94f44684dfa36dab5d86f6b89

  • Size

    33KB

  • Sample

    240911-x1d3gsydla

  • MD5

    b9ff49f049fb9b3ff88220f1a0dc4757

  • SHA1

    69acb04ec8ffd72916190bc2f1e5352990c70916

  • SHA256

    198b6a9e7b200e729b0c938ade05bd4f0cdd6ae94f44684dfa36dab5d86f6b89

  • SHA512

    b4343d2770cbc4e3a4841720669c60174f2f25dcb283cf5fd35755f5ec33bc8ba942943e51757f5387aa66d6d8c9d16b2f24e29f7b71d5c9e1cde768023490d3

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tif:CTW7JJ7TTQoQf

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      198b6a9e7b200e729b0c938ade05bd4f0cdd6ae94f44684dfa36dab5d86f6b89

    • Size

      33KB

    • MD5

      b9ff49f049fb9b3ff88220f1a0dc4757

    • SHA1

      69acb04ec8ffd72916190bc2f1e5352990c70916

    • SHA256

      198b6a9e7b200e729b0c938ade05bd4f0cdd6ae94f44684dfa36dab5d86f6b89

    • SHA512

      b4343d2770cbc4e3a4841720669c60174f2f25dcb283cf5fd35755f5ec33bc8ba942943e51757f5387aa66d6d8c9d16b2f24e29f7b71d5c9e1cde768023490d3

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tif:CTW7JJ7TTQoQf

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3725) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks