General

  • Target

    2024-06-07_27b13a8c8eaa222746f06b021c96fbea_cryptolocker

  • Size

    52KB

  • Sample

    240607-xezr3aca7z

  • MD5

    27b13a8c8eaa222746f06b021c96fbea

  • SHA1

    699201dde3f27de529ebfb2ae11cd3af927ee4f5

  • SHA256

    8e2abdf1c098cbd1dc0234c8facfc3472faa9896383eaefce83b74616d2c560d

  • SHA512

    0ea3bac3505e22cbfc4d01488cf144064b1cff9fc1a3ca2b4c061abda5041435df9d86bd8bef2a7d29f8768b1097a2733c03a23b6f674e9b161442a542ba2525

  • SSDEEP

    768:bODOw9UiamWUB2preAr+OfjH/0S16avdrQFiLjJvtX3:bODOw9acifAoc+vX3

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-07_27b13a8c8eaa222746f06b021c96fbea_cryptolocker

    • Size

      52KB

    • MD5

      27b13a8c8eaa222746f06b021c96fbea

    • SHA1

      699201dde3f27de529ebfb2ae11cd3af927ee4f5

    • SHA256

      8e2abdf1c098cbd1dc0234c8facfc3472faa9896383eaefce83b74616d2c560d

    • SHA512

      0ea3bac3505e22cbfc4d01488cf144064b1cff9fc1a3ca2b4c061abda5041435df9d86bd8bef2a7d29f8768b1097a2733c03a23b6f674e9b161442a542ba2525

    • SSDEEP

      768:bODOw9UiamWUB2preAr+OfjH/0S16avdrQFiLjJvtX3:bODOw9acifAoc+vX3

    Score
    9/10
    • Detection of CryptoLocker Variants

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks