2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1a | Triage

Submit
Reports

Overview

overview

9

Static

static

5

2897a7cf01...aN.exe

windows7-x64

9

2897a7cf01...aN.exe

windows10-2004-x64

9

Sharing

General

Target

2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1aN
Size

44KB
Sample

241002-bpyrvszejl
MD5

d73f36c64bb464f822ecbd926517af80
SHA1

859e3962834df3ad16caca0e0bde5030bd4cfa71
SHA256

2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1a
SHA512

da0f2904a6e87e8a63864dfd6717cc1d507e08d9ba6ae1057a949339fb30a2f94bf39e045715dc5566e409122dc76a4ce81c18248e7951b0a8ed4de1b23cd360
SSDEEP

384:QOlIBXDaU7CPKK0TIhfJJPbUEobUE51lRtJicszsOVCXb9CGDb9CGea7Aa77:kBT37CPKKdJJTU3U2lRtJfO6CQCM

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1aN.exe

Resource

win7-20240704-en

discovery ransomware upx

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1aN.exe

Resource

win10v2004-20240802-en

discovery ransomware upx

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Targets

- Target
  
  2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1aN
- Size
  
  44KB
- MD5
  
  d73f36c64bb464f822ecbd926517af80
- SHA1
  
  859e3962834df3ad16caca0e0bde5030bd4cfa71
- SHA256
  
  2897a7cf01455835417ce63f2cfcd3855de43b2f4c19b6f87bd5a932c88d3e1a
- SHA512
  
  da0f2904a6e87e8a63864dfd6717cc1d507e08d9ba6ae1057a949339fb30a2f94bf39e045715dc5566e409122dc76a4ce81c18248e7951b0a8ed4de1b23cd360
- SSDEEP
  
  384:QOlIBXDaU7CPKK0TIhfJJPbUEobUE51lRtJicszsOVCXb9CGDb9CGea7Aa77:kBT37CPKKdJJTU3U2lRtJfO6CQCM
Score

9^/10

discovery ransomware upx
- Renames multiple (3177) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2024

Terms | Privacy