23858618390e7c9cb904e681753c28341c93bac96587d090ca7aae7725e16fe8 | Triage

Submit
Reports

Overview

overview

Static

static

2024-04-20...er.exe

windows7-x64

9

2024-04-20...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-04-20_6e2d1c6aafc56bdb5b1c8bcec493a509_cryptolocker
Size

96KB
Sample

240420-1djagaba5t
MD5

6e2d1c6aafc56bdb5b1c8bcec493a509
SHA1

55228a89ac70b3c6398c94c5781bc4e6ce736789
SHA256

23858618390e7c9cb904e681753c28341c93bac96587d090ca7aae7725e16fe8
SHA512

947d4069e5d9475e2c5b0d48401946a5fbff00f56e71e834c3b56dcf89c19fa6ff2a6bf364f21bedbdba7760fbddb333def9cedba1ad3257ca550c56c1bac157
SSDEEP

1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRDjgx/b5:zCsanOtEvwDpjBN

Score

10^/10

upx

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

2024-04-20_6e2d1c6aafc56bdb5b1c8bcec493a509_cryptolocker.exe

Resource

win7-20231129-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-20_6e2d1c6aafc56bdb5b1c8bcec493a509_cryptolocker.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-20_6e2d1c6aafc56bdb5b1c8bcec493a509_cryptolocker
- Size
  
  96KB
- MD5
  
  6e2d1c6aafc56bdb5b1c8bcec493a509
- SHA1
  
  55228a89ac70b3c6398c94c5781bc4e6ce736789
- SHA256
  
  23858618390e7c9cb904e681753c28341c93bac96587d090ca7aae7725e16fe8
- SHA512
  
  947d4069e5d9475e2c5b0d48401946a5fbff00f56e71e834c3b56dcf89c19fa6ff2a6bf364f21bedbdba7760fbddb333def9cedba1ad3257ca550c56c1bac157
- SSDEEP
  
  1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRDjgx/b5:zCsanOtEvwDpjBN
Score

9^/10

upx
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy