Overview

overview

9

Static

static

7

dd78f17aa8...5N.exe

windows7-x64

9

dd78f17aa8...5N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dd78f17aa868fa27bf1e1c2de05a2d11c044bc13e1aa3d5d846f9d11cacbd165N

  • Size

    37KB

  • Sample

    240919-gxl1xsvcpj

  • MD5

    94e407562001412f9e8057dafbafe4e0

  • SHA1

    c469dbba49e623f5f15d7faf3d1059e8a2904c3a

  • SHA256

    dd78f17aa868fa27bf1e1c2de05a2d11c044bc13e1aa3d5d846f9d11cacbd165

  • SHA512

    9828cde408c873dcf682cbfde79267f48b39e30c7c1ede4073dc307c298a886452d575b2c3b21f38f6fd319d138bd902e8c99a451966ba079b0e814369e64611

  • SSDEEP

    768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKe7Leop:CTWKWZ

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      dd78f17aa868fa27bf1e1c2de05a2d11c044bc13e1aa3d5d846f9d11cacbd165N

    • Size

      37KB

    • MD5

      94e407562001412f9e8057dafbafe4e0

    • SHA1

      c469dbba49e623f5f15d7faf3d1059e8a2904c3a

    • SHA256

      dd78f17aa868fa27bf1e1c2de05a2d11c044bc13e1aa3d5d846f9d11cacbd165

    • SHA512

      9828cde408c873dcf682cbfde79267f48b39e30c7c1ede4073dc307c298a886452d575b2c3b21f38f6fd319d138bd902e8c99a451966ba079b0e814369e64611

    • SSDEEP

      768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKe7Leop:CTWKWZ

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3197) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks