Overview

overview

10

Static

static

10

2024-05-31...er.exe

windows7-x64

9

2024-05-31...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-31_1eef6a3d82cfffa965ee482d2d4fe65d_cryptolocker

  • Size

    69KB

  • Sample

    240531-2cpljaff4w

  • MD5

    1eef6a3d82cfffa965ee482d2d4fe65d

  • SHA1

    14e367a4d1d0387a5920825ed6cb6d110acfca71

  • SHA256

    a24d73d1408513bdca13efbe99ce83bc89d392e9e3199bb16e71eb642e449bdd

  • SHA512

    675ff457a4c79c35ad7a9e3192479c5b5f31425adb9290e91cc86b5460937107756149bcae3d3ce05a9d1fcb899ba3f81b84fa0ebc041e3afa37986d84a9ed3e

  • SSDEEP

    1536:quJu9cvMOtEvwDpjWYTjipvF2bx1PQApI0A:78SEOtEvwDpjWYvQd2PQ

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-31_1eef6a3d82cfffa965ee482d2d4fe65d_cryptolocker

    • Size

      69KB

    • MD5

      1eef6a3d82cfffa965ee482d2d4fe65d

    • SHA1

      14e367a4d1d0387a5920825ed6cb6d110acfca71

    • SHA256

      a24d73d1408513bdca13efbe99ce83bc89d392e9e3199bb16e71eb642e449bdd

    • SHA512

      675ff457a4c79c35ad7a9e3192479c5b5f31425adb9290e91cc86b5460937107756149bcae3d3ce05a9d1fcb899ba3f81b84fa0ebc041e3afa37986d84a9ed3e

    • SSDEEP

      1536:quJu9cvMOtEvwDpjWYTjipvF2bx1PQApI0A:78SEOtEvwDpjWYvQd2PQ

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks