Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee5039438a66ddba2a6c3e26e09d0325868fe363dd36e69da250f66aa63bf545

  • Size

    266KB

  • Sample

    240523-cz2f6sah59

  • MD5

    4ee554cc4b7f3835b98cdb3b444ef8f1

  • SHA1

    596f012759f56195132b5363c8621f61bc9f5f50

  • SHA256

    ee5039438a66ddba2a6c3e26e09d0325868fe363dd36e69da250f66aa63bf545

  • SHA512

    cd8394592415fa18344c615dc5dd7b4590fbd6f0ebf765f01da81cf6f0f34cc6a7f5bb714d7e511706d7259a913ff5e80127aa51c33bcc2d97a382965e3d509e

  • SSDEEP

    6144:5XzKdNY49u8rVxSzJTeB6IxACs2Sj01net:ia4APzU0IpLSj01

Score
7/10
upx

Malware Config

Targets

    • Target

      ee5039438a66ddba2a6c3e26e09d0325868fe363dd36e69da250f66aa63bf545

    • Size

      266KB

    • MD5

      4ee554cc4b7f3835b98cdb3b444ef8f1

    • SHA1

      596f012759f56195132b5363c8621f61bc9f5f50

    • SHA256

      ee5039438a66ddba2a6c3e26e09d0325868fe363dd36e69da250f66aa63bf545

    • SHA512

      cd8394592415fa18344c615dc5dd7b4590fbd6f0ebf765f01da81cf6f0f34cc6a7f5bb714d7e511706d7259a913ff5e80127aa51c33bcc2d97a382965e3d509e

    • SSDEEP

      6144:5XzKdNY49u8rVxSzJTeB6IxACs2Sj01net:ia4APzU0IpLSj01

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks