bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

bd1fcdca2e...06.exe

windows7-x64

9

bd1fcdca2e...06.exe

windows10-2004-x64

9

Sharing

General

Target

bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06
Size

504KB
Sample

240915-bphewaxhmn
MD5

2af4d594489407714532ef1e624a96d0
SHA1

929b01525740601d532af84ca5d8687bd9cba2e9
SHA256

bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06
SHA512

cde4b646d386ca47ff83313d7c66de137292a73541f3c303a4a59fa9890cb34953857de79c456495368e0ee02e6c86766fdc582bfb9672fa96f5ab3973eb8fa8
SSDEEP

6144:KGnLtZHb6Ll5dt4VNCHW1DO7MuL6ISOKQ2:Tnh5gl6ZDovVEL

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06.exe

Resource

win7-20240903-en

discovery ransomware upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06
- Size
  
  504KB
- MD5
  
  2af4d594489407714532ef1e624a96d0
- SHA1
  
  929b01525740601d532af84ca5d8687bd9cba2e9
- SHA256
  
  bd1fcdca2ede844ce4d72c324107c1619e0864fbb8ab2169ea03a24a78831d06
- SHA512
  
  cde4b646d386ca47ff83313d7c66de137292a73541f3c303a4a59fa9890cb34953857de79c456495368e0ee02e6c86766fdc582bfb9672fa96f5ab3973eb8fa8
- SSDEEP
  
  6144:KGnLtZHb6Ll5dt4VNCHW1DO7MuL6ISOKQ2:Tnh5gl6ZDovVEL
Score

9^/10

discovery ransomware upx
- Renames multiple (1980) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2024

Terms | Privacy