Overview

overview

10

Static

static

10

2024-05-24...er.exe

windows7-x64

9

2024-05-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-24_ad521d1ac7929b4939062d58514cdd28_cryptolocker

  • Size

    69KB

  • Sample

    240524-ejqqvacc6z

  • MD5

    ad521d1ac7929b4939062d58514cdd28

  • SHA1

    7e841ab2488af39dff583812e82d3edf7e17e104

  • SHA256

    c3ad8337208c5baf8f10f46bc7a370f9aaa9dac4c16409c0235a064c308ccacc

  • SHA512

    cdea55fe3d047a48ea0382a8fdb2b374af1f51b4687464d5645311a4aabc421b201598143bd595400df836fb7af68a04ee8555a16b3543fad59ff1537f471a0c

  • SSDEEP

    1536:quJu9cvMOtEvwDpjWYTjipvF2bx1PQAe6:78SEOtEvwDpjWYvQd2Pb

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-24_ad521d1ac7929b4939062d58514cdd28_cryptolocker

    • Size

      69KB

    • MD5

      ad521d1ac7929b4939062d58514cdd28

    • SHA1

      7e841ab2488af39dff583812e82d3edf7e17e104

    • SHA256

      c3ad8337208c5baf8f10f46bc7a370f9aaa9dac4c16409c0235a064c308ccacc

    • SHA512

      cdea55fe3d047a48ea0382a8fdb2b374af1f51b4687464d5645311a4aabc421b201598143bd595400df836fb7af68a04ee8555a16b3543fad59ff1537f471a0c

    • SSDEEP

      1536:quJu9cvMOtEvwDpjWYTjipvF2bx1PQAe6:78SEOtEvwDpjWYvQd2Pb

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks