b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94b | Triage

Submit
Reports

Overview

overview

9

Static

static

5

b9bde82d4e...bN.exe

windows7-x64

9

b9bde82d4e...bN.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94bN.exe
Size

73KB
Sample

240925-2h4yeavcph
MD5

153e217767cd55c91a1d1963fb0c27f0
SHA1

0e7d455cefdd07dbff52a91e3b53d7de08933794
SHA256

b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94b
SHA512

dbf7df6b1ab2f2c6e4f1b01a6f40f5455b028e74e3e822357710b7e25cd552375db49f3d915c9a33d528e04b840d1defa1b8282ac59e02f6434e22472e368682
SSDEEP

1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxo:fnyiQSo1

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94bN.exe

Resource

win7-20240708-en

discovery ransomware upx

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94bN.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Targets

- Target
  
  b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94bN.exe
- Size
  
  73KB
- MD5
  
  153e217767cd55c91a1d1963fb0c27f0
- SHA1
  
  0e7d455cefdd07dbff52a91e3b53d7de08933794
- SHA256
  
  b9bde82d4edf86b5cd80d19596fc5fc077fbaa5136aa850d141360e78fc0b94b
- SHA512
  
  dbf7df6b1ab2f2c6e4f1b01a6f40f5455b028e74e3e822357710b7e25cd552375db49f3d915c9a33d528e04b840d1defa1b8282ac59e02f6434e22472e368682
- SSDEEP
  
  1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxo:fnyiQSo1
Score

9^/10

discovery ransomware upx
- Renames multiple (3136) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy