Overview

overview

10

Static

static

10

2024-01-26...er.exe

windows7-x64

9

2024-01-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-26_e718167d341d13c01d1a1142849ed2cc_cryptolocker

  • Size

    55KB

  • Sample

    240126-t3cewsbcgq

  • MD5

    e718167d341d13c01d1a1142849ed2cc

  • SHA1

    f6be226d9d947d30407975e9ea45b08125dfea14

  • SHA256

    be8de87d73667fdebb53b6733472584aa4f1d211f9a2150a503cd1565935c152

  • SHA512

    c177da8189e2a33f06f3e8347155cffae001bd81cf6c09f955ee0d5bf42514e090aa6de69c0b24c18169d0e52273385062a2927162596210cfb59091882315be

  • SSDEEP

    768:zQz7yVEhs9+syJP6ntOOtEvwDpjFeV0ZOfcpLh:zj+soPSMOtEvwDpj4yh

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-01-26_e718167d341d13c01d1a1142849ed2cc_cryptolocker

    • Size

      55KB

    • MD5

      e718167d341d13c01d1a1142849ed2cc

    • SHA1

      f6be226d9d947d30407975e9ea45b08125dfea14

    • SHA256

      be8de87d73667fdebb53b6733472584aa4f1d211f9a2150a503cd1565935c152

    • SHA512

      c177da8189e2a33f06f3e8347155cffae001bd81cf6c09f955ee0d5bf42514e090aa6de69c0b24c18169d0e52273385062a2927162596210cfb59091882315be

    • SSDEEP

      768:zQz7yVEhs9+syJP6ntOOtEvwDpjFeV0ZOfcpLh:zj+soPSMOtEvwDpj4yh

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks