Overview

overview

10

Static

static

10

2024-06-08...er.exe

windows7-x64

9

2024-06-08...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-08_6bffab8d8719b74d0a23d3c4440da094_cryptolocker

  • Size

    60KB

  • Sample

    240608-xtfbzaeh5s

  • MD5

    6bffab8d8719b74d0a23d3c4440da094

  • SHA1

    c6079f7d1ca834db991c6f7e5c0078bc758faac7

  • SHA256

    74022c37f515e2c0cda32693ad8d4b0c4429dd505bd64cd4d05f0d33b26b6df9

  • SHA512

    266bfe24243eacd6be5b97873474c1cc1ac87bc614504de010c76dfc7f01a4e0c26ec21bfdcc6e702c720d780fa6349968ef3e14794bbaccde603cb23397fe39

  • SSDEEP

    768:H6LsoEEeegiZPvEhHSG+gk5NQXtckstOOtEvwDpjhBaD3TUogs/VXpAPBTu:H6QFElP6n+gou9cvMOtEvwDpjCpVXYTu

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-08_6bffab8d8719b74d0a23d3c4440da094_cryptolocker

    • Size

      60KB

    • MD5

      6bffab8d8719b74d0a23d3c4440da094

    • SHA1

      c6079f7d1ca834db991c6f7e5c0078bc758faac7

    • SHA256

      74022c37f515e2c0cda32693ad8d4b0c4429dd505bd64cd4d05f0d33b26b6df9

    • SHA512

      266bfe24243eacd6be5b97873474c1cc1ac87bc614504de010c76dfc7f01a4e0c26ec21bfdcc6e702c720d780fa6349968ef3e14794bbaccde603cb23397fe39

    • SSDEEP

      768:H6LsoEEeegiZPvEhHSG+gk5NQXtckstOOtEvwDpjhBaD3TUogs/VXpAPBTu:H6QFElP6n+gou9cvMOtEvwDpjCpVXYTu

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks