Overview

overview

9

Static

static

5

81e13f2a19...80.exe

windows7-x64

9

81e13f2a19...80.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    81e13f2a1945db30b65bbe904a75f3652009d8fb1d20309dd48333c710308a80.exe

  • Size

    210KB

  • Sample

    250111-z9y55aspdn

  • MD5

    536a1aa0e02e95af1701f6758a955a27

  • SHA1

    3e83738829fdc3e284ecbe81a05f2797b5d65e6d

  • SHA256

    81e13f2a1945db30b65bbe904a75f3652009d8fb1d20309dd48333c710308a80

  • SHA512

    bdaf2e75e8427220fb68a1c549c5239a396f7393e78fc669e55fec24d00bc5f062763a6b2dfb606bc65a1cfdd2b8467989bab8aa7dd971614e0599722a7388a0

  • SSDEEP

    3072:fny1tEyyj2yAeCgjJQWHIjN3tj6qnv0b2UrXkbvLiPP0:KbEyyj2yAIJbIjNDv0bNXkbvLiP8

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      81e13f2a1945db30b65bbe904a75f3652009d8fb1d20309dd48333c710308a80.exe

    • Size

      210KB

    • MD5

      536a1aa0e02e95af1701f6758a955a27

    • SHA1

      3e83738829fdc3e284ecbe81a05f2797b5d65e6d

    • SHA256

      81e13f2a1945db30b65bbe904a75f3652009d8fb1d20309dd48333c710308a80

    • SHA512

      bdaf2e75e8427220fb68a1c549c5239a396f7393e78fc669e55fec24d00bc5f062763a6b2dfb606bc65a1cfdd2b8467989bab8aa7dd971614e0599722a7388a0

    • SSDEEP

      3072:fny1tEyyj2yAeCgjJQWHIjN3tj6qnv0b2UrXkbvLiPP0:KbEyyj2yAIJbIjNDv0bNXkbvLiP8

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2599) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks