6f033527029f357c7e0cd6e38a04dcbbb06e4e0c255700e150089e220c1ed9b9 | Triage

Submit
Reports

Overview

overview

Static

static

2024-04-15...er.exe

windows7-x64

9

2024-04-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-15_cf38fd8a2c02208aac88a637c2f1d31c_cryptolocker
Size

54KB
Sample

240415-sf3swshd53
MD5

cf38fd8a2c02208aac88a637c2f1d31c
SHA1

13ca54a0fdff2a97f330159421bdeb29e5cb1e6e
SHA256

6f033527029f357c7e0cd6e38a04dcbbb06e4e0c255700e150089e220c1ed9b9
SHA512

08cbb18428fc91c39eed719c3c5d27819e660f6193e0ab3de90fe52130be7fe50b05f4b5afc8381b57c624f79e3cc98ff72ec506f44cce2c7f92a371126b7b38
SSDEEP

768:bP9g/WItCSsAfFaeOcfXVr3BPOz5CFBmNuFgUL7:bP9g/xtCS3Dxx0G

Score

10^/10

upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

2024-04-15_cf38fd8a2c02208aac88a637c2f1d31c_cryptolocker.exe

Resource

win7-20231129-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-15_cf38fd8a2c02208aac88a637c2f1d31c_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-15_cf38fd8a2c02208aac88a637c2f1d31c_cryptolocker
- Size
  
  54KB
- MD5
  
  cf38fd8a2c02208aac88a637c2f1d31c
- SHA1
  
  13ca54a0fdff2a97f330159421bdeb29e5cb1e6e
- SHA256
  
  6f033527029f357c7e0cd6e38a04dcbbb06e4e0c255700e150089e220c1ed9b9
- SHA512
  
  08cbb18428fc91c39eed719c3c5d27819e660f6193e0ab3de90fe52130be7fe50b05f4b5afc8381b57c624f79e3cc98ff72ec506f44cce2c7f92a371126b7b38
- SSDEEP
  
  768:bP9g/WItCSsAfFaeOcfXVr3BPOz5CFBmNuFgUL7:bP9g/xtCS3Dxx0G
Score

9^/10

upx
- Detection of CryptoLocker Variants
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy