Overview

overview

10

Static

static

10

2024-05-01...er.exe

windows7-x64

9

2024-05-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-01_b928dcb7634a0c1d950c3ce57726691b_cryptolocker

  • Size

    68KB

  • Sample

    240501-e9xl3sab82

  • MD5

    b928dcb7634a0c1d950c3ce57726691b

  • SHA1

    6fc794801e1b034537bceaaebb84b7d5b9d1678a

  • SHA256

    c798300a05696a9f2e3549ef43cc89be2b91a536700660694423798dde1ff071

  • SHA512

    bbd2c8b0523ce1a25aef703fd000f890852382199957cdcaa336dc5492102c8f52fab54dccecd87052ce26369c6d73bc3caef1b629e3bd93bfabeefb33b256b1

  • SSDEEP

    768:quVbxjgQNQXtckstOOtEvwDpjAaDOK6PsED3VK2+ZtyOjgO4r9vFAg2rq6W1A1P6:quJu9cvMOtEvwDpjWYTjipvF2bx1PQA6

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-01_b928dcb7634a0c1d950c3ce57726691b_cryptolocker

    • Size

      68KB

    • MD5

      b928dcb7634a0c1d950c3ce57726691b

    • SHA1

      6fc794801e1b034537bceaaebb84b7d5b9d1678a

    • SHA256

      c798300a05696a9f2e3549ef43cc89be2b91a536700660694423798dde1ff071

    • SHA512

      bbd2c8b0523ce1a25aef703fd000f890852382199957cdcaa336dc5492102c8f52fab54dccecd87052ce26369c6d73bc3caef1b629e3bd93bfabeefb33b256b1

    • SSDEEP

      768:quVbxjgQNQXtckstOOtEvwDpjAaDOK6PsED3VK2+ZtyOjgO4r9vFAg2rq6W1A1P6:quJu9cvMOtEvwDpjWYTjipvF2bx1PQA6

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks