Overview

overview

10

Static

static

10

2024-05-09...er.exe

windows7-x64

9

2024-05-09...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-09_10bcf53769ce5b6c2348b6d9f768204a_cryptolocker

  • Size

    51KB

  • Sample

    240509-2bx7aahh8s

  • MD5

    10bcf53769ce5b6c2348b6d9f768204a

  • SHA1

    b2dbd8fe06fc27b35c894a8be7a4658f0fd602e7

  • SHA256

    3b1617e23e72edd77ce86273e622e19b06c6c8c4a77716e713bde186b51bd0bf

  • SHA512

    15d2928208a2581e68cff4ef1fa1b39d381de730ef2d9a27489ffe93bba0fd9939383125ab23146f81d64caa87117c3f7258045788319a390a114c1a634a5bbf

  • SSDEEP

    768:bODOw9UiamWUB2preAr+OfjH/0S16avdrQFiLjJvtY:bODOw9acifAoc+vY

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-09_10bcf53769ce5b6c2348b6d9f768204a_cryptolocker

    • Size

      51KB

    • MD5

      10bcf53769ce5b6c2348b6d9f768204a

    • SHA1

      b2dbd8fe06fc27b35c894a8be7a4658f0fd602e7

    • SHA256

      3b1617e23e72edd77ce86273e622e19b06c6c8c4a77716e713bde186b51bd0bf

    • SHA512

      15d2928208a2581e68cff4ef1fa1b39d381de730ef2d9a27489ffe93bba0fd9939383125ab23146f81d64caa87117c3f7258045788319a390a114c1a634a5bbf

    • SSDEEP

      768:bODOw9UiamWUB2preAr+OfjH/0S16avdrQFiLjJvtY:bODOw9acifAoc+vY

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks