Overview

overview

9

Static

static

5

23d5a063b9...bN.exe

windows7-x64

9

23d5a063b9...bN.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    23d5a063b975960721a9e65df50841ad0784893cc8b52fce677e2ab2644b456bN.exe

  • Size

    117KB

  • Sample

    250120-lal5masmhj

  • MD5

    ef5142d6efeeb484704df24d6839e1c0

  • SHA1

    9edbcc0984b24f45c321d51a01ee82c6d67f7ebe

  • SHA256

    23d5a063b975960721a9e65df50841ad0784893cc8b52fce677e2ab2644b456b

  • SHA512

    813c736efcbe76159c0482d2178d899b2d63510a1fa875206764c86d0c2c64e841809c35e9646a24143a69fcdb62cc2d86672f061107d21966a2bcdbe01b39c2

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTBmRPsdj2hkAeCgI3i0CJS1Il+lM5QOVhFVh6Jb1Jb3ryCl:fny1tEyyj2yAeCgjJRDFDqryCl

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      23d5a063b975960721a9e65df50841ad0784893cc8b52fce677e2ab2644b456bN.exe

    • Size

      117KB

    • MD5

      ef5142d6efeeb484704df24d6839e1c0

    • SHA1

      9edbcc0984b24f45c321d51a01ee82c6d67f7ebe

    • SHA256

      23d5a063b975960721a9e65df50841ad0784893cc8b52fce677e2ab2644b456b

    • SHA512

      813c736efcbe76159c0482d2178d899b2d63510a1fa875206764c86d0c2c64e841809c35e9646a24143a69fcdb62cc2d86672f061107d21966a2bcdbe01b39c2

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTBmRPsdj2hkAeCgI3i0CJS1Il+lM5QOVhFVh6Jb1Jb3ryCl:fny1tEyyj2yAeCgjJRDFDqryCl

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (2866) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks