97742eeab2c0edfe401c71ee10acfc4edc4eba231aa959a61b67e647666b43de | Triage

Submit
Reports

Overview

overview

Static

static

2024-06-09...er.exe

windows7-x64

9

2024-06-09...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-09_edb57535181a18d2d1ee13429964c9f1_cryptolocker
Size

40KB
Sample

240609-eyhnsaec47
MD5

edb57535181a18d2d1ee13429964c9f1
SHA1

d8df49732c10cfbc304e573ac1e71d6b8ae77bb9
SHA256

97742eeab2c0edfe401c71ee10acfc4edc4eba231aa959a61b67e647666b43de
SHA512

39dd7b8d1a21c916fe903654c2cc91289c9d421a9894b5d1780143a7de4cbffc0617840ec8e299944ada203efe02990055301d9332b19dc5b23cacb9d7808501
SSDEEP

768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9hk:qDdFJy3QMOtEvwDpjjWMl7Td

Score

10^/10

upx

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

2024-06-09_edb57535181a18d2d1ee13429964c9f1_cryptolocker.exe

Resource

win7-20240508-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-09_edb57535181a18d2d1ee13429964c9f1_cryptolocker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-09_edb57535181a18d2d1ee13429964c9f1_cryptolocker
- Size
  
  40KB
- MD5
  
  edb57535181a18d2d1ee13429964c9f1
- SHA1
  
  d8df49732c10cfbc304e573ac1e71d6b8ae77bb9
- SHA256
  
  97742eeab2c0edfe401c71ee10acfc4edc4eba231aa959a61b67e647666b43de
- SHA512
  
  39dd7b8d1a21c916fe903654c2cc91289c9d421a9894b5d1780143a7de4cbffc0617840ec8e299944ada203efe02990055301d9332b19dc5b23cacb9d7808501
- SSDEEP
  
  768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9hk:qDdFJy3QMOtEvwDpjjWMl7Td
Score

9^/10

upx
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy