Overview

overview

9

Static

static

7

efcb619f4e...fN.exe

windows7-x64

9

efcb619f4e...fN.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    efcb619f4e1bab201f61223f3c7ed3dd0f7d2919542962a88d305d0fcdee813fN

  • Size

    80KB

  • Sample

    240921-m8mpgsyfnf

  • MD5

    3009d1ad4151061061faa145da2a2ec0

  • SHA1

    c9726cf94b2f9468ba5575d833c80d1c7ae30466

  • SHA256

    efcb619f4e1bab201f61223f3c7ed3dd0f7d2919542962a88d305d0fcdee813f

  • SHA512

    f119e948aa83ee8b735753f3afd40ae8ce1b0a862bc87154544c23dbd5ab51b0d16b82bf916c58928cfd8b442973db8d1cda414d839cc11245a2af7a77c49834

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxY5z:fnyiQSox5z

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      efcb619f4e1bab201f61223f3c7ed3dd0f7d2919542962a88d305d0fcdee813fN

    • Size

      80KB

    • MD5

      3009d1ad4151061061faa145da2a2ec0

    • SHA1

      c9726cf94b2f9468ba5575d833c80d1c7ae30466

    • SHA256

      efcb619f4e1bab201f61223f3c7ed3dd0f7d2919542962a88d305d0fcdee813f

    • SHA512

      f119e948aa83ee8b735753f3afd40ae8ce1b0a862bc87154544c23dbd5ab51b0d16b82bf916c58928cfd8b442973db8d1cda414d839cc11245a2af7a77c49834

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxY5z:fnyiQSox5z

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3119) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks