Overview

overview

10

Static

static

10

2024-04-06...er.exe

windows7-x64

9

2024-04-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-06_384121cbaec24df670d0230152371f71_cryptolocker

  • Size

    75KB

  • Sample

    240406-ml2j5agh59

  • MD5

    384121cbaec24df670d0230152371f71

  • SHA1

    3cd5318e5ad087427a51c2324486006c14eaa6d7

  • SHA256

    8c552f18d52741150a0f292c4c1d985070471ed63783298989efa2b1629390f8

  • SHA512

    9cd2a9034f45ff4c9d1b61662013bbe51abeb3f9fcca4cd8e370dd0531f923663035551938c0f141c1db02bd9b259231d7a8907ad4176c0501e31f257e96ed74

  • SSDEEP

    1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOAkXtBdxPUxG:T6a+rdOOtEvwDpjNtHPV

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-04-06_384121cbaec24df670d0230152371f71_cryptolocker

    • Size

      75KB

    • MD5

      384121cbaec24df670d0230152371f71

    • SHA1

      3cd5318e5ad087427a51c2324486006c14eaa6d7

    • SHA256

      8c552f18d52741150a0f292c4c1d985070471ed63783298989efa2b1629390f8

    • SHA512

      9cd2a9034f45ff4c9d1b61662013bbe51abeb3f9fcca4cd8e370dd0531f923663035551938c0f141c1db02bd9b259231d7a8907ad4176c0501e31f257e96ed74

    • SSDEEP

      1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOAkXtBdxPUxG:T6a+rdOOtEvwDpjNtHPV

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks