59c170f6b6d63e34d9b7cc2c5dc521e06fb04293733973d9ce709ec0c92467ac

Analysis

max time kernel
1s
max time network
6s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
06/08/2023, 17:49

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

8ed57f2edb1d9454b8b80eacfa7ed94f_cryptolocker_JC.exe
Size

77KB
MD5

8ed57f2edb1d9454b8b80eacfa7ed94f
SHA1

5321fe34472bb6f989a0db15fb4f1ebf376f93cd
SHA256

59c170f6b6d63e34d9b7cc2c5dc521e06fb04293733973d9ce709ec0c92467ac
SHA512

90fb7d04965dc048a8bbdf30859dc1943c7341061f83f22579819a7cd0386a87f94bf26e695ac1ed575944906f3fde902466c2dd5492751b76e8e6da00f8a753
SSDEEP

1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsalDSwLJM:1nK6a+qdOOtEvwDpjh

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 5 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral2/memory/4004-133-0x0000000000500000-0x000000000050F311-memory.dmp	upx
behavioral2/files/0x0006000000023232-146.dat	upx
behavioral2/files/0x0006000000023232-148.dat	upx
behavioral2/files/0x0006000000023232-149.dat	upx
behavioral2/memory/4004-150-0x0000000000500000-0x000000000050F311-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\8ed57f2edb1d9454b8b80eacfa7ed94f_cryptolocker_JC.exe
"C:\Users\Admin\AppData\Local\Temp\8ed57f2edb1d9454b8b80eacfa7ed94f_cryptolocker_JC.exe"
1⤵
PID:4004
- C:\Users\Admin\AppData\Local\Temp\asih.exe
  "C:\Users\Admin\AppData\Local\Temp\asih.exe"
  2⤵
  PID:5052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\asih.exe

Filesize
77KB

MD5
6a4f1a4baf8bd9aedf479e495d2ad47e

SHA1
6b114006fb2e295cb3561ed3c9a2cd7f2f87a83b

SHA256
86d87a878674aa30109b82092dba40e4497c382c8e3c92d0eabe32b8498266bd

SHA512
a9236e01045ab7d5e8abfdb0aa261f5fd6e872b88a48cf6cc9e064fe6fd963e948068b269848871605ed23b9a3df4b9dafdd631461d2bb51d856d37fc8750082

Download Submit
C:\Users\Admin\AppData\Local\Temp\asih.exe

Filesize
77KB

MD5
6a4f1a4baf8bd9aedf479e495d2ad47e

SHA1
6b114006fb2e295cb3561ed3c9a2cd7f2f87a83b

SHA256
86d87a878674aa30109b82092dba40e4497c382c8e3c92d0eabe32b8498266bd

SHA512
a9236e01045ab7d5e8abfdb0aa261f5fd6e872b88a48cf6cc9e064fe6fd963e948068b269848871605ed23b9a3df4b9dafdd631461d2bb51d856d37fc8750082

Download Submit
C:\Users\Admin\AppData\Local\Temp\asih.exe

Filesize
77KB

MD5
6a4f1a4baf8bd9aedf479e495d2ad47e

SHA1
6b114006fb2e295cb3561ed3c9a2cd7f2f87a83b

SHA256
86d87a878674aa30109b82092dba40e4497c382c8e3c92d0eabe32b8498266bd

SHA512
a9236e01045ab7d5e8abfdb0aa261f5fd6e872b88a48cf6cc9e064fe6fd963e948068b269848871605ed23b9a3df4b9dafdd631461d2bb51d856d37fc8750082

Download Submit
memory/4004-133-0x0000000000500000-0x000000000050F311-memory.dmp

Filesize
60KB

Download
memory/4004-134-0x00000000021E0000-0x00000000021E6000-memory.dmp

Filesize
24KB

Download
memory/4004-135-0x00000000021E0000-0x00000000021E6000-memory.dmp

Filesize
24KB

Download
memory/4004-136-0x0000000002070000-0x0000000002076000-memory.dmp

Filesize
24KB

Download
memory/4004-150-0x0000000000500000-0x000000000050F311-memory.dmp

Filesize
60KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads