Overview

overview

9

Static

static

5

b25c746c98...a4.exe

windows7-x64

9

b25c746c98...a4.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b25c746c98360331373da9fb9fc830be1a037ba2f6cdccb7b1296ee20e38a6a4.exe

  • Size

    157KB

  • Sample

    241119-tgn7kayelr

  • MD5

    ce4f2da869e454586dd14313e94ff94d

  • SHA1

    497c88e233c8a4f64e388ebf9005c12885773e4d

  • SHA256

    b25c746c98360331373da9fb9fc830be1a037ba2f6cdccb7b1296ee20e38a6a4

  • SHA512

    f06a79124a0e68e9774a1416482e50b90694dc442c2f71733dd73c471b80a448f6729806fde30b66b8c0f840a4c1d27314200706d4b95397a0bfa6b76fd5cdf1

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTBHfiP3zgn94pWHlPEXZzjUq3th5f6utM5vLNinVmWvMu0bV:fny1tExnQWHIjN3tj6qnv0b2UrXkbvLW

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      b25c746c98360331373da9fb9fc830be1a037ba2f6cdccb7b1296ee20e38a6a4.exe

    • Size

      157KB

    • MD5

      ce4f2da869e454586dd14313e94ff94d

    • SHA1

      497c88e233c8a4f64e388ebf9005c12885773e4d

    • SHA256

      b25c746c98360331373da9fb9fc830be1a037ba2f6cdccb7b1296ee20e38a6a4

    • SHA512

      f06a79124a0e68e9774a1416482e50b90694dc442c2f71733dd73c471b80a448f6729806fde30b66b8c0f840a4c1d27314200706d4b95397a0bfa6b76fd5cdf1

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTBHfiP3zgn94pWHlPEXZzjUq3th5f6utM5vLNinVmWvMu0bV:fny1tExnQWHIjN3tj6qnv0b2UrXkbvLW

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (240) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks