Overview

overview

9

Static

static

5

41f1db5828...36.exe

windows7-x64

9

41f1db5828...36.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41f1db582858d27de48fd6562e090804e239086f4a03ea486b5e16f8deaaf336.exe

  • Size

    44KB

  • Sample

    241119-tqflsayfll

  • MD5

    2a9cbfab49c2266f75dc271838367b6d

  • SHA1

    c94dcc55d1003e8901e2916b0ea2dc94f7c72483

  • SHA256

    41f1db582858d27de48fd6562e090804e239086f4a03ea486b5e16f8deaaf336

  • SHA512

    20fe21ead2db579e13a3e770af77324720e398b508545b3368a485443007d07f9bebf6d6d5b3f953bd1298379f5c22e5e77fcbcc645080e30eed48b976a39627

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBQrK:V7Zf/FAxTWoJJZENTBQrK

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      41f1db582858d27de48fd6562e090804e239086f4a03ea486b5e16f8deaaf336.exe

    • Size

      44KB

    • MD5

      2a9cbfab49c2266f75dc271838367b6d

    • SHA1

      c94dcc55d1003e8901e2916b0ea2dc94f7c72483

    • SHA256

      41f1db582858d27de48fd6562e090804e239086f4a03ea486b5e16f8deaaf336

    • SHA512

      20fe21ead2db579e13a3e770af77324720e398b508545b3368a485443007d07f9bebf6d6d5b3f953bd1298379f5c22e5e77fcbcc645080e30eed48b976a39627

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBQrK:V7Zf/FAxTWoJJZENTBQrK

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2849) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks