Overview

overview

9

Static

static

5

67b1964939...dN.exe

windows7-x64

9

67b1964939...dN.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    67b19649399797c8ccfd39af840b8603f7dffc82dbe2355299fa8bda0b029f7dN.exe

  • Size

    186KB

  • Sample

    250111-14cklsvjbq

  • MD5

    4c5eb00d0a9b20d66732d6aad0d500f0

  • SHA1

    39516ca3651434c75d190a6714c2f964597b2f57

  • SHA256

    67b19649399797c8ccfd39af840b8603f7dffc82dbe2355299fa8bda0b029f7d

  • SHA512

    d1f194f0b00da5379801598cb7153f0de1926f1c7b856c56c9eab50ce9ec15ba684b790bc03d9caa10870b1e9d6438a98ae068c7961f88f8d79f0f8ad34e1f7a

  • SSDEEP

    3072:htEyyj2yAeCgjJQWHIjN3tj6qnv0b2UrXkbvLiPa:fEyyj2yAIJbIjNDv0bNXkbvLiPa

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      67b19649399797c8ccfd39af840b8603f7dffc82dbe2355299fa8bda0b029f7dN.exe

    • Size

      186KB

    • MD5

      4c5eb00d0a9b20d66732d6aad0d500f0

    • SHA1

      39516ca3651434c75d190a6714c2f964597b2f57

    • SHA256

      67b19649399797c8ccfd39af840b8603f7dffc82dbe2355299fa8bda0b029f7d

    • SHA512

      d1f194f0b00da5379801598cb7153f0de1926f1c7b856c56c9eab50ce9ec15ba684b790bc03d9caa10870b1e9d6438a98ae068c7961f88f8d79f0f8ad34e1f7a

    • SSDEEP

      3072:htEyyj2yAeCgjJQWHIjN3tj6qnv0b2UrXkbvLiPa:fEyyj2yAIJbIjNDv0bNXkbvLiPa

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2691) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks