Overview

overview

9

Static

static

7

eb31344c59...84.exe

windows7-x64

9

eb31344c59...84.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eb31344c5978002527314547b5f80e303429f554643853bc5b9dddbf26ba3684

  • Size

    78KB

  • Sample

    240701-etzrhawcle

  • MD5

    ece6f209e287deef248f5452ed66eac2

  • SHA1

    3243bc0aa2249a4d59910cee1e6b925f04ce5845

  • SHA256

    eb31344c5978002527314547b5f80e303429f554643853bc5b9dddbf26ba3684

  • SHA512

    f66f87b657adcb421b014345dd9476f45a5a2071edfc3358019d7a2f53640141bd31e1293272d0a3c81c5d1168dd378cd0723b73445d3d7f1ceef6ab22f5058c

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxZfxRfxy:fnyiQSoWf7fM

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      eb31344c5978002527314547b5f80e303429f554643853bc5b9dddbf26ba3684

    • Size

      78KB

    • MD5

      ece6f209e287deef248f5452ed66eac2

    • SHA1

      3243bc0aa2249a4d59910cee1e6b925f04ce5845

    • SHA256

      eb31344c5978002527314547b5f80e303429f554643853bc5b9dddbf26ba3684

    • SHA512

      f66f87b657adcb421b014345dd9476f45a5a2071edfc3358019d7a2f53640141bd31e1293272d0a3c81c5d1168dd378cd0723b73445d3d7f1ceef6ab22f5058c

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxZfxRfxy:fnyiQSoWf7fM

    Score
    9/10
    ransomwareupx

    • Renames multiple (3309) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks