Overview

overview

10

Static

static

10

2024-04-06...er.exe

windows7-x64

9

2024-04-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-06_dad0e45f75dee6796a1e97abef7ca0da_cryptolocker

  • Size

    75KB

  • Sample

    240406-lw2r7sff5x

  • MD5

    dad0e45f75dee6796a1e97abef7ca0da

  • SHA1

    23420cb27b7037576ac5fca27f450fc1e3f90125

  • SHA256

    0fae30004af1c3afe0576c477668bcdfc76ad1fbbb832d7d88f7e6e877973a22

  • SHA512

    bb215a5a385b7d3d9429f9adc22ed75a6251f1dae5a2f91825c26a1be221d18fef48d3f53fe9fa7eb457b5bf62a72a6b615dea7453f1ffeef1278d02a4ab7a1d

  • SSDEEP

    1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOAkXtBdxPUxC:T6a+rdOOtEvwDpjNtHPR

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-04-06_dad0e45f75dee6796a1e97abef7ca0da_cryptolocker

    • Size

      75KB

    • MD5

      dad0e45f75dee6796a1e97abef7ca0da

    • SHA1

      23420cb27b7037576ac5fca27f450fc1e3f90125

    • SHA256

      0fae30004af1c3afe0576c477668bcdfc76ad1fbbb832d7d88f7e6e877973a22

    • SHA512

      bb215a5a385b7d3d9429f9adc22ed75a6251f1dae5a2f91825c26a1be221d18fef48d3f53fe9fa7eb457b5bf62a72a6b615dea7453f1ffeef1278d02a4ab7a1d

    • SSDEEP

      1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOAkXtBdxPUxC:T6a+rdOOtEvwDpjNtHPR

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks