Overview

overview

9

Static

static

5

b328f44d6e...b8.exe

windows7-x64

9

b328f44d6e...b8.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b328f44d6eb86e6513f238b514392d4d89978bdba22da7f5eff65e0c5eeb74b8.exe

  • Size

    1.2MB

  • Sample

    250111-1yta6s1qex

  • MD5

    58db060ed58630030937ce930515c2f1

  • SHA1

    38e429a8a15f86267b89ed93db96c4ee56cb1252

  • SHA256

    b328f44d6eb86e6513f238b514392d4d89978bdba22da7f5eff65e0c5eeb74b8

  • SHA512

    2ed1460c83654c1dba33183188454da12ae3a9b4804a560505a58857abac1337115db18ea94b559006f0e0b30b9568839ac1bdcad8a7e7a9e90232819cdf01f7

  • SSDEEP

    1536:V7Zf/FAxTWoJJ7TTQoQmoNC4CuTW7JJ7TTQoQmoNC4CoYJ:fny1oRlC4CtoRlC4C5

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      b328f44d6eb86e6513f238b514392d4d89978bdba22da7f5eff65e0c5eeb74b8.exe

    • Size

      1.2MB

    • MD5

      58db060ed58630030937ce930515c2f1

    • SHA1

      38e429a8a15f86267b89ed93db96c4ee56cb1252

    • SHA256

      b328f44d6eb86e6513f238b514392d4d89978bdba22da7f5eff65e0c5eeb74b8

    • SHA512

      2ed1460c83654c1dba33183188454da12ae3a9b4804a560505a58857abac1337115db18ea94b559006f0e0b30b9568839ac1bdcad8a7e7a9e90232819cdf01f7

    • SSDEEP

      1536:V7Zf/FAxTWoJJ7TTQoQmoNC4CuTW7JJ7TTQoQmoNC4CoYJ:fny1oRlC4CtoRlC4C5

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (333) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks