33dff4e2f5699b2f00865136668fe43d3e56aed28ecf33b2325342f6b20df152 | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-23...er.exe

windows7-x64

9

2024-05-23...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-23_7614733de1e5882379d5d0fa0cb91709_cryptolocker
Size

56KB
Sample

240523-x8mdtsde36
MD5

7614733de1e5882379d5d0fa0cb91709
SHA1

f71b17abed97249aa34a75182060a29b32bf41b1
SHA256

33dff4e2f5699b2f00865136668fe43d3e56aed28ecf33b2325342f6b20df152
SHA512

1e81debc15145d4fe0ded8a6656a9e849a1ce4277795b1be028a9df2cb0f609232feccf59392dfb190f488892d6280ae41fd5cc9e70112172c7cf8f3393cfb88
SSDEEP

768:bP9g/WItCSsAfFaeOcfXVr3BPOz5CFBmNuFgUjNJl:bP9g/xtCS3Dxx0g

Score

10^/10

upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

2024-05-23_7614733de1e5882379d5d0fa0cb91709_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-23_7614733de1e5882379d5d0fa0cb91709_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-23_7614733de1e5882379d5d0fa0cb91709_cryptolocker
- Size
  
  56KB
- MD5
  
  7614733de1e5882379d5d0fa0cb91709
- SHA1
  
  f71b17abed97249aa34a75182060a29b32bf41b1
- SHA256
  
  33dff4e2f5699b2f00865136668fe43d3e56aed28ecf33b2325342f6b20df152
- SHA512
  
  1e81debc15145d4fe0ded8a6656a9e849a1ce4277795b1be028a9df2cb0f609232feccf59392dfb190f488892d6280ae41fd5cc9e70112172c7cf8f3393cfb88
- SSDEEP
  
  768:bP9g/WItCSsAfFaeOcfXVr3BPOz5CFBmNuFgUjNJl:bP9g/xtCS3Dxx0g
Score

9^/10

upx
- Detection of CryptoLocker Variants
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy