Overview

overview

9

Static

static

5

141499b43c...54.exe

windows7-x64

9

141499b43c...54.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    141499b43c151bcf32b5b6b5274698fe4bbcda6210fbc6a6aab2868d8eff4a54.exe

  • Size

    44KB

  • Sample

    241119-rlf1ms1rfm

  • MD5

    9122d3572e783604c04fdae2011961cb

  • SHA1

    8b1c720bab6f75ca3e5f3e18ef9b9bd2b11707af

  • SHA256

    141499b43c151bcf32b5b6b5274698fe4bbcda6210fbc6a6aab2868d8eff4a54

  • SHA512

    80d55037ce8a4367f9cebe0ebd0cdf61818624d92a9f2d5920b1e2af11da41d6b7038f2aab76d9011d73768d533e52af7e1d9d54559a2d728402880b13a7a2d9

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATB7JGvBJJGvB2:V7Zf/FAxTWoJJZENTB7JGvBJJGvB2

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      141499b43c151bcf32b5b6b5274698fe4bbcda6210fbc6a6aab2868d8eff4a54.exe

    • Size

      44KB

    • MD5

      9122d3572e783604c04fdae2011961cb

    • SHA1

      8b1c720bab6f75ca3e5f3e18ef9b9bd2b11707af

    • SHA256

      141499b43c151bcf32b5b6b5274698fe4bbcda6210fbc6a6aab2868d8eff4a54

    • SHA512

      80d55037ce8a4367f9cebe0ebd0cdf61818624d92a9f2d5920b1e2af11da41d6b7038f2aab76d9011d73768d533e52af7e1d9d54559a2d728402880b13a7a2d9

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATB7JGvBJJGvB2:V7Zf/FAxTWoJJZENTB7JGvBJJGvB2

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2810) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks