Overview

overview

10

Static

static

10

2024-05-01...er.exe

windows7-x64

9

2024-05-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-01_bc87d37cec6cb1a443aa95c42805a90a_cryptolocker

  • Size

    36KB

  • Sample

    240501-t53pvsbc81

  • MD5

    bc87d37cec6cb1a443aa95c42805a90a

  • SHA1

    ee52d92918d851e27629cef8805fe0fe31475944

  • SHA256

    f3a8dd4bf1cf14c0e8faff0c20ae39111a2a0e184dec836872a89c50384138a8

  • SHA512

    55c9ec8b89f5c155c0b9df314c50f521cdf24a1cbd945b3ea0771101f8e57eeb4556427c4649d7ffd127b740cc99a75d00a392169319bebfac5c11fda87b788a

  • SSDEEP

    768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5ax+Na:qUmnpomddpMOtEvwDpjjaYaJ

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-01_bc87d37cec6cb1a443aa95c42805a90a_cryptolocker

    • Size

      36KB

    • MD5

      bc87d37cec6cb1a443aa95c42805a90a

    • SHA1

      ee52d92918d851e27629cef8805fe0fe31475944

    • SHA256

      f3a8dd4bf1cf14c0e8faff0c20ae39111a2a0e184dec836872a89c50384138a8

    • SHA512

      55c9ec8b89f5c155c0b9df314c50f521cdf24a1cbd945b3ea0771101f8e57eeb4556427c4649d7ffd127b740cc99a75d00a392169319bebfac5c11fda87b788a

    • SSDEEP

      768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5ax+Na:qUmnpomddpMOtEvwDpjjaYaJ

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks