Overview

overview

10

Static

static

10

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-14_2fd33a8e4bf12160accb227b315702d4_cryptolocker

  • Size

    91KB

  • Sample

    240314-mjwk4aca28

  • MD5

    2fd33a8e4bf12160accb227b315702d4

  • SHA1

    886e1307123f93a3932477e82ade45c29eafd579

  • SHA256

    31bc5ea1822460f6a768c4bc9e803bb8c8bb2899c6c0895d9ac4825fd9923091

  • SHA512

    28a7394764361f22b6a5c03195482a67ae63a5a22d7f6abee074f5aca8c614a3c6c95c9c975975f13531e59d112b9db3ad0bc36fc401ddb91a7cb3fb98f939a0

  • SSDEEP

    1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRMy87Uv5:zCsanOtEvwDpjA

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-03-14_2fd33a8e4bf12160accb227b315702d4_cryptolocker

    • Size

      91KB

    • MD5

      2fd33a8e4bf12160accb227b315702d4

    • SHA1

      886e1307123f93a3932477e82ade45c29eafd579

    • SHA256

      31bc5ea1822460f6a768c4bc9e803bb8c8bb2899c6c0895d9ac4825fd9923091

    • SHA512

      28a7394764361f22b6a5c03195482a67ae63a5a22d7f6abee074f5aca8c614a3c6c95c9c975975f13531e59d112b9db3ad0bc36fc401ddb91a7cb3fb98f939a0

    • SSDEEP

      1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRMy87Uv5:zCsanOtEvwDpjA

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks