Overview

overview

9

Static

static

5

936b6be955...c8.exe

windows7-x64

9

936b6be955...c8.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    936b6be955e7a6a5319da01208440ebcbcfe392e8763816964ac9619be6d54c8.exe

  • Size

    101KB

  • Sample

    241120-d99e7szmg1

  • MD5

    8f8b93cf86cf9d2837f5aa881342deb5

  • SHA1

    aaeb9cbebd13c3959e03708a4185c4d726e360d0

  • SHA256

    936b6be955e7a6a5319da01208440ebcbcfe392e8763816964ac9619be6d54c8

  • SHA512

    259c3ec046e09fa0a0487778ac947c36cea47e46486a788ce3e9c0b2a47464978be4b319b19679c50ac8584a72de964b9e6d62af1ebc7e686740081868672e3e

  • SSDEEP

    3072:htEr9iMGfUSaOy9SnJUwFU+FUhFUeFUXFUqyqKRrpF6PwZ:fEr9iMGsSaOyiM

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      936b6be955e7a6a5319da01208440ebcbcfe392e8763816964ac9619be6d54c8.exe

    • Size

      101KB

    • MD5

      8f8b93cf86cf9d2837f5aa881342deb5

    • SHA1

      aaeb9cbebd13c3959e03708a4185c4d726e360d0

    • SHA256

      936b6be955e7a6a5319da01208440ebcbcfe392e8763816964ac9619be6d54c8

    • SHA512

      259c3ec046e09fa0a0487778ac947c36cea47e46486a788ce3e9c0b2a47464978be4b319b19679c50ac8584a72de964b9e6d62af1ebc7e686740081868672e3e

    • SSDEEP

      3072:htEr9iMGfUSaOy9SnJUwFU+FUhFUeFUXFUqyqKRrpF6PwZ:fEr9iMGsSaOyiM

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3287) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks