Overview

overview

9

Static

static

5

979242e9b6...0N.exe

windows7-x64

9

979242e9b6...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    979242e9b6fedf3bb7c36b3d584e54384ab598c3d1e37f422941511d4a7f1dd0N

  • Size

    60KB

  • Sample

    241005-heslesvejd

  • MD5

    9549da2dd8cc918df58be60bdfee6b40

  • SHA1

    d1120087e30801c98504b652fb4eea7c90818a6f

  • SHA256

    979242e9b6fedf3bb7c36b3d584e54384ab598c3d1e37f422941511d4a7f1dd0

  • SHA512

    e5da49956eaf818fcb35c27f2ddb57c6391be2af26008edd561588dbd29c6386d18e89e67406f55b077a67ca2d0e6df83510c5b8c7c692b30cabba539393b687

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNydWK9WKF9ADJd:V7Zf/FAxTWoJJZENTNyoKIKM0rY

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      979242e9b6fedf3bb7c36b3d584e54384ab598c3d1e37f422941511d4a7f1dd0N

    • Size

      60KB

    • MD5

      9549da2dd8cc918df58be60bdfee6b40

    • SHA1

      d1120087e30801c98504b652fb4eea7c90818a6f

    • SHA256

      979242e9b6fedf3bb7c36b3d584e54384ab598c3d1e37f422941511d4a7f1dd0

    • SHA512

      e5da49956eaf818fcb35c27f2ddb57c6391be2af26008edd561588dbd29c6386d18e89e67406f55b077a67ca2d0e6df83510c5b8c7c692b30cabba539393b687

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNydWK9WKF9ADJd:V7Zf/FAxTWoJJZENTNyoKIKM0rY

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3292) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks