General

  • Target

    2024-06-02_2f0c452c586c0b14eb1d20975a3fee6d_cryptolocker

  • Size

    40KB

  • Sample

    240602-f2qz1acc91

  • MD5

    2f0c452c586c0b14eb1d20975a3fee6d

  • SHA1

    23a90247d0f264d360d60d9f73ee6b044256f14b

  • SHA256

    177841fa7c3f0490e3c87f99fa1b3846f62739b0cbc015f97766361f0b5d3ee2

  • SHA512

    65daf1ef22f3244705c2268e299546da44a56e3d35faf9c85aa673428ad05be7d48b1bf6abd442805e5f629c74df11832c3bf45c35b4672f8bf7d46b76b98a68

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9sPF:qDdFJy3QMOtEvwDpjjWMl7TZ

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-02_2f0c452c586c0b14eb1d20975a3fee6d_cryptolocker

    • Size

      40KB

    • MD5

      2f0c452c586c0b14eb1d20975a3fee6d

    • SHA1

      23a90247d0f264d360d60d9f73ee6b044256f14b

    • SHA256

      177841fa7c3f0490e3c87f99fa1b3846f62739b0cbc015f97766361f0b5d3ee2

    • SHA512

      65daf1ef22f3244705c2268e299546da44a56e3d35faf9c85aa673428ad05be7d48b1bf6abd442805e5f629c74df11832c3bf45c35b4672f8bf7d46b76b98a68

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9sPF:qDdFJy3QMOtEvwDpjjWMl7TZ

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks