5a7f44b12704457527c5ceb47d8764e20167c3a2fa83e05251a2b653be9fc01c | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-30...er.exe

windows7-x64

9

2024-05-30...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-30_1b59d37c2d0fc309eea0e3906e17ed64_cryptolocker
Size

90KB
Sample

240530-g9cb9aad37
MD5

1b59d37c2d0fc309eea0e3906e17ed64
SHA1

a533fc0efd14ff91411790bacf33ef9895849507
SHA256

5a7f44b12704457527c5ceb47d8764e20167c3a2fa83e05251a2b653be9fc01c
SHA512

03d3b96e5bd016a12681b094990e49fadce4996b86d5e5005ee3546a81ae23a24def1aede1530b576297ceda431cb0716b7fc02f5ee03b0e5ed5b8b662a4daff
SSDEEP

1536:n6QFElP6n+g9u9cvMOtEvwDpjYYTjipvF2bx1PQAA/x:n6a+1SEOtEvwDpjYYvQd2Py

Score

10^/10

upx

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

2024-05-30_1b59d37c2d0fc309eea0e3906e17ed64_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-30_1b59d37c2d0fc309eea0e3906e17ed64_cryptolocker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-30_1b59d37c2d0fc309eea0e3906e17ed64_cryptolocker
- Size
  
  90KB
- MD5
  
  1b59d37c2d0fc309eea0e3906e17ed64
- SHA1
  
  a533fc0efd14ff91411790bacf33ef9895849507
- SHA256
  
  5a7f44b12704457527c5ceb47d8764e20167c3a2fa83e05251a2b653be9fc01c
- SHA512
  
  03d3b96e5bd016a12681b094990e49fadce4996b86d5e5005ee3546a81ae23a24def1aede1530b576297ceda431cb0716b7fc02f5ee03b0e5ed5b8b662a4daff
- SSDEEP
  
  1536:n6QFElP6n+g9u9cvMOtEvwDpjYYTjipvF2bx1PQAA/x:n6a+1SEOtEvwDpjYYvQd2Py
Score

9^/10

upx
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy