General

  • Target

    2024-06-07_a71f24fe983c55aad4e43317135acf55_cryptolocker

  • Size

    54KB

  • Sample

    240607-szgd1aae4s

  • MD5

    a71f24fe983c55aad4e43317135acf55

  • SHA1

    767d268959ef3c30ea83567afd0578523a537913

  • SHA256

    8eea6e8ae57a8cf019bbe23b36713df5dca2e2e1af28a8865dfd2bdf79ca0b6c

  • SHA512

    f756f11f050261a229d0ef80bca966f3df32a2004f90fca6081138ec1db5ce00f17120e62a93876db31a0261e7cb1f00c12e08f9845270e985c3f69e6ea45aac

  • SSDEEP

    768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkg8:z6QFElP6n+gKmddpMOtEvwDpj31ikg8

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-07_a71f24fe983c55aad4e43317135acf55_cryptolocker

    • Size

      54KB

    • MD5

      a71f24fe983c55aad4e43317135acf55

    • SHA1

      767d268959ef3c30ea83567afd0578523a537913

    • SHA256

      8eea6e8ae57a8cf019bbe23b36713df5dca2e2e1af28a8865dfd2bdf79ca0b6c

    • SHA512

      f756f11f050261a229d0ef80bca966f3df32a2004f90fca6081138ec1db5ce00f17120e62a93876db31a0261e7cb1f00c12e08f9845270e985c3f69e6ea45aac

    • SSDEEP

      768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkg8:z6QFElP6n+gKmddpMOtEvwDpj31ikg8

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks