General

  • Target

    2024-06-06_8cccc9dbd87ee1ef43c2bd73e980c21f_cryptolocker

  • Size

    40KB

  • Sample

    240606-1c9e9scc4z

  • MD5

    8cccc9dbd87ee1ef43c2bd73e980c21f

  • SHA1

    cefd2fe8c5ebadab9db508de004abf33b35ce54b

  • SHA256

    d4edf2c5f41989e17c624e3a9d62f68b9bd9828d539a3549aeca5af3d3a7c671

  • SHA512

    63bc5b8efab04596f85bd43380d9ead95de1262bc783133f1444083235cee02e3491166538d18839999928dd78dab7c97f98969de6970926e59a0a4bb77397cf

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDbB:qDdFJy3QMOtEvwDpjjWMl7TdN

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-06_8cccc9dbd87ee1ef43c2bd73e980c21f_cryptolocker

    • Size

      40KB

    • MD5

      8cccc9dbd87ee1ef43c2bd73e980c21f

    • SHA1

      cefd2fe8c5ebadab9db508de004abf33b35ce54b

    • SHA256

      d4edf2c5f41989e17c624e3a9d62f68b9bd9828d539a3549aeca5af3d3a7c671

    • SHA512

      63bc5b8efab04596f85bd43380d9ead95de1262bc783133f1444083235cee02e3491166538d18839999928dd78dab7c97f98969de6970926e59a0a4bb77397cf

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDbB:qDdFJy3QMOtEvwDpjjWMl7TdN

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks