64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

5

64056715fe...4N.exe

windows7-x64

9

64056715fe...4N.exe

windows10-2004-x64

9

Sharing

General

Target

64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4N
Size

79KB
Sample

241015-bcd7pazamp
MD5

67fab0b8e95c103f478abb8ce5109120
SHA1

94042fe759dfb908c180b9f38af9cd4fc5d09526
SHA256

64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4
SHA512

4385e5869e5e1e7b44929d2ad31aaec255f840ae742e4cc544e2315846ef46466b6602e0bb1af06ccbeb3ae8891bca6ab8b2a1af5d23e50893f85078a8c6faac
SSDEEP

768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcwBcCBcw/tio/ti3c7Fc7I:V7Zf/FAxTWoJJ7TTQoQmoI

Score

9^/10

discovery ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4N.exe

Resource

win7-20240903-en

discovery ransomware upx

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4N.exe

Resource

win10v2004-20241007-en

discovery ransomware upx

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Targets

- Target
  
  64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4N
- Size
  
  79KB
- MD5
  
  67fab0b8e95c103f478abb8ce5109120
- SHA1
  
  94042fe759dfb908c180b9f38af9cd4fc5d09526
- SHA256
  
  64056715feec20245d8c4da077a277a3424f1249489af2b6fe8de039de8a0ea4
- SHA512
  
  4385e5869e5e1e7b44929d2ad31aaec255f840ae742e4cc544e2315846ef46466b6602e0bb1af06ccbeb3ae8891bca6ab8b2a1af5d23e50893f85078a8c6faac
- SSDEEP
  
  768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcwBcCBcw/tio/ti3c7Fc7I:V7Zf/FAxTWoJJ7TTQoQmoI
Score

9^/10

discovery ransomware upx
- Renames multiple (3147) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomwareupx

behavioral2

discoveryransomwareupx

© 2018-2025

Terms | Privacy