Overview

overview

9

Static

static

5

1d69114170...69.exe

windows7-x64

9

1d69114170...69.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    1d691141705a3d5591c099e7d4b0709bdc4b1f46f85a1fbe328858b53f967f69

  • Size

    63KB

  • Sample

    241005-xydc6szdlj

  • MD5

    32f0ff4c3f34f63bf06915d99132505c

  • SHA1

    0525e9d92a9b3a453999d90544ea1915df2a8d2b

  • SHA256

    1d691141705a3d5591c099e7d4b0709bdc4b1f46f85a1fbe328858b53f967f69

  • SHA512

    b034f425b885c6e1d90799965f5dce1cef4ec6406f37da04625fb6f4619aa3fa07fbc2f8f103781cfc36dbb3009ed1243afa43a31ea4a37884e021cb4815c3b6

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBHfBo8o3P1:V7Zf/FAxTWoJJZENTBHfiP1

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      1d691141705a3d5591c099e7d4b0709bdc4b1f46f85a1fbe328858b53f967f69

    • Size

      63KB

    • MD5

      32f0ff4c3f34f63bf06915d99132505c

    • SHA1

      0525e9d92a9b3a453999d90544ea1915df2a8d2b

    • SHA256

      1d691141705a3d5591c099e7d4b0709bdc4b1f46f85a1fbe328858b53f967f69

    • SHA512

      b034f425b885c6e1d90799965f5dce1cef4ec6406f37da04625fb6f4619aa3fa07fbc2f8f103781cfc36dbb3009ed1243afa43a31ea4a37884e021cb4815c3b6

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBHfBo8o3P1:V7Zf/FAxTWoJJZENTBHfiP1

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3687) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks