9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

9c01aee13c...d5.exe

windows7-x64

9

9c01aee13c...d5.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5
Size

121KB
Sample

240919-ptcl3sydng
MD5

4626d9a50f37f8f38154784a923f12e7
SHA1

ef625d967757a27e20959fa3667c010fc0c6553c
SHA256

9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5
SHA512

048e40b11958099ae1563b5c7a441ff88eabe1c840a55d76e8c0b886938e47c10688ef75be3fa74d8b9dbfa247fd87961ebb1d0f977cb5dbe5d57a022cb039a0
SSDEEP

768:kBT37CPKKIm0CA7l+BT37CPKKIm0CA7lu:CTWnHTWnZ

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5.exe

Resource

win7-20240903-en

discovery ransomware upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5
- Size
  
  121KB
- MD5
  
  4626d9a50f37f8f38154784a923f12e7
- SHA1
  
  ef625d967757a27e20959fa3667c010fc0c6553c
- SHA256
  
  9c01aee13c5725735d4e1aae8c3376eb2dcc8541510512846eb8d27d2de047d5
- SHA512
  
  048e40b11958099ae1563b5c7a441ff88eabe1c840a55d76e8c0b886938e47c10688ef75be3fa74d8b9dbfa247fd87961ebb1d0f977cb5dbe5d57a022cb039a0
- SSDEEP
  
  768:kBT37CPKKIm0CA7l+BT37CPKKIm0CA7lu:CTWnHTWnZ
Score

9^/10

discovery ransomware upx
- Renames multiple (4786) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy