Overview

overview

9

Static

static

5

43ab821656...e1.exe

windows7-x64

9

43ab821656...e1.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    43ab8216568b650a8197b7da5f6f2ecc9306882f647e2c0fc5cf041d4579d8e1.exe

  • Size

    281KB

  • Sample

    241126-bygjyatmgp

  • MD5

    b71ebb681af0ff0d0eca0d2b87785928

  • SHA1

    84d4359b96869916cafb46f0455f67a2f097198e

  • SHA256

    43ab8216568b650a8197b7da5f6f2ecc9306882f647e2c0fc5cf041d4579d8e1

  • SHA512

    03ebfd885f81f5789b58b9485c144aff1598c0a25a9584c6de779401f90eefd39b730cfb01e006d506c871a0c8c63a9bab4cfee7f41270244c1dac0191581367

  • SSDEEP

    6144:fEJIjNDv0bNXkbvLIEJIjNDv0bNXkbvLU:+IZGNXkbvLNIZGNXkbvLU

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      43ab8216568b650a8197b7da5f6f2ecc9306882f647e2c0fc5cf041d4579d8e1.exe

    • Size

      281KB

    • MD5

      b71ebb681af0ff0d0eca0d2b87785928

    • SHA1

      84d4359b96869916cafb46f0455f67a2f097198e

    • SHA256

      43ab8216568b650a8197b7da5f6f2ecc9306882f647e2c0fc5cf041d4579d8e1

    • SHA512

      03ebfd885f81f5789b58b9485c144aff1598c0a25a9584c6de779401f90eefd39b730cfb01e006d506c871a0c8c63a9bab4cfee7f41270244c1dac0191581367

    • SSDEEP

      6144:fEJIjNDv0bNXkbvLIEJIjNDv0bNXkbvLU:+IZGNXkbvLNIZGNXkbvLU

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (1726) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks