Overview

overview

9

Static

static

5

c98e55830b...7N.exe

windows7-x64

9

c98e55830b...7N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c98e55830bface0e13ef7b1ba5f2e655d61c714f49a65441ffd0ff15b655e2b7N.exe

  • Size

    282KB

  • Sample

    250111-z56z6ssnaj

  • MD5

    24e967e8948317a18132b9698fb1b9f0

  • SHA1

    d037a9cffcba363b758ddc571ef8d8ea94d88d27

  • SHA256

    c98e55830bface0e13ef7b1ba5f2e655d61c714f49a65441ffd0ff15b655e2b7

  • SHA512

    c0b3f0f4197bb2d69b979d1a886a17d26215e5d995c41f46a361956d4450c8d4453e365d50465c33bbe610fe89294796db9c7ec8d135fd29633dc150322debd2

  • SSDEEP

    6144:KbEyyj2yAIJAEyyj2yAIJDyIjNDv0bNXkbvLl:WyAU8yAUDyIZGNXkbvLl

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      c98e55830bface0e13ef7b1ba5f2e655d61c714f49a65441ffd0ff15b655e2b7N.exe

    • Size

      282KB

    • MD5

      24e967e8948317a18132b9698fb1b9f0

    • SHA1

      d037a9cffcba363b758ddc571ef8d8ea94d88d27

    • SHA256

      c98e55830bface0e13ef7b1ba5f2e655d61c714f49a65441ffd0ff15b655e2b7

    • SHA512

      c0b3f0f4197bb2d69b979d1a886a17d26215e5d995c41f46a361956d4450c8d4453e365d50465c33bbe610fe89294796db9c7ec8d135fd29633dc150322debd2

    • SSDEEP

      6144:KbEyyj2yAIJAEyyj2yAIJDyIjNDv0bNXkbvLl:WyAU8yAUDyIZGNXkbvLl

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2151) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks