Overview

overview

10

Static

static

10

2024-03-19...er.exe

windows7-x64

9

2024-03-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-19_442f4daea073d8abe51691b538a83998_cryptolocker

  • Size

    102KB

  • Sample

    240319-x9gvqsea5v

  • MD5

    442f4daea073d8abe51691b538a83998

  • SHA1

    1827d751afc59fe6a50405459478e5e0ca47497f

  • SHA256

    936d1654b7897569f1bbf321a7d02aa936af62058d13fa33cfbd5298bffa1425

  • SHA512

    119358b4a4118d89b6081be645d224bd9c6d9ec2860d22ae34ac0afb02a552590e9bb407fc2da634d44221e50e718101384dbc00d519238a0bd8a066282bb294

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviy6ixHW:AnBdOOtEvwDpj6zZ

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-03-19_442f4daea073d8abe51691b538a83998_cryptolocker

    • Size

      102KB

    • MD5

      442f4daea073d8abe51691b538a83998

    • SHA1

      1827d751afc59fe6a50405459478e5e0ca47497f

    • SHA256

      936d1654b7897569f1bbf321a7d02aa936af62058d13fa33cfbd5298bffa1425

    • SHA512

      119358b4a4118d89b6081be645d224bd9c6d9ec2860d22ae34ac0afb02a552590e9bb407fc2da634d44221e50e718101384dbc00d519238a0bd8a066282bb294

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviy6ixHW:AnBdOOtEvwDpj6zZ

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks