598e500c7a43781550b580b9a935a542de13665f9d3f018bc942ee41380a29e0 | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-30...er.exe

windows7-x64

9

2024-05-30...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-30_85d2c5e5448298f410f8e1b8b484e494_cryptolocker
Size

76KB
Sample

240530-svc6sach6w
MD5

85d2c5e5448298f410f8e1b8b484e494
SHA1

556c10f474c15ebdedb5b97fdae9d44ef4c99118
SHA256

598e500c7a43781550b580b9a935a542de13665f9d3f018bc942ee41380a29e0
SHA512

8edcb6b5a2161c6670da7b6e934c82695883afb6aee6a17de90350c7844c4bd9a9d22a59e4867d72f174382da1df980c637bde2b0f3b31abc0d31f92feb9a28d
SSDEEP

1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsal81Gb:1nK6a+qdOOtEvwDpjC

Score

10^/10

upx

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

2024-05-30_85d2c5e5448298f410f8e1b8b484e494_cryptolocker.exe

Resource

win7-20240508-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-30_85d2c5e5448298f410f8e1b8b484e494_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-30_85d2c5e5448298f410f8e1b8b484e494_cryptolocker
- Size
  
  76KB
- MD5
  
  85d2c5e5448298f410f8e1b8b484e494
- SHA1
  
  556c10f474c15ebdedb5b97fdae9d44ef4c99118
- SHA256
  
  598e500c7a43781550b580b9a935a542de13665f9d3f018bc942ee41380a29e0
- SHA512
  
  8edcb6b5a2161c6670da7b6e934c82695883afb6aee6a17de90350c7844c4bd9a9d22a59e4867d72f174382da1df980c637bde2b0f3b31abc0d31f92feb9a28d
- SSDEEP
  
  1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsal81Gb:1nK6a+qdOOtEvwDpjC
Score

9^/10

upx
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy