Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    054c2aea8ab49576b2a9b3a2691af0d60227f0ae6897716ee1ff381ceb6a77e5

  • Size

    266KB

  • Sample

    240522-c755bshg84

  • MD5

    922ae7a1a449e72aa552dec407dac573

  • SHA1

    07131179d5177c53bd26f5477488d54ac77a7802

  • SHA256

    054c2aea8ab49576b2a9b3a2691af0d60227f0ae6897716ee1ff381ceb6a77e5

  • SHA512

    9bf4867390865cef0b22e7e2eded551703695ec480f077a284019c1ce5155116c6a48304b861e228666c97964acf91c09f0946881fff5d974f6af8ba505de73d

  • SSDEEP

    3072:iNXEGZJWhfNFC4S60+XoLczrVmXqzt1dUzWKK8/3UuwiDIAkJhgD4ePihH01ne4S:QXzKdNY49u8rVvBypDIAygDe01net

Score
7/10
upx

Malware Config

Targets

    • Target

      054c2aea8ab49576b2a9b3a2691af0d60227f0ae6897716ee1ff381ceb6a77e5

    • Size

      266KB

    • MD5

      922ae7a1a449e72aa552dec407dac573

    • SHA1

      07131179d5177c53bd26f5477488d54ac77a7802

    • SHA256

      054c2aea8ab49576b2a9b3a2691af0d60227f0ae6897716ee1ff381ceb6a77e5

    • SHA512

      9bf4867390865cef0b22e7e2eded551703695ec480f077a284019c1ce5155116c6a48304b861e228666c97964acf91c09f0946881fff5d974f6af8ba505de73d

    • SSDEEP

      3072:iNXEGZJWhfNFC4S60+XoLczrVmXqzt1dUzWKK8/3UuwiDIAkJhgD4ePihH01ne4S:QXzKdNY49u8rVvBypDIAygDe01net

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks