General

  • Target

    2024-06-10_48418da239722b2db6258faeba6912a0_cryptolocker

  • Size

    39KB

  • Sample

    240610-1cvbca1hpl

  • MD5

    48418da239722b2db6258faeba6912a0

  • SHA1

    4ed8ead22c5afd3ccecf13910074b4ec6b6a6267

  • SHA256

    51787962a97be0844fd182c5399d2f813888ad9095ee26eae1781c7b285c49c1

  • SHA512

    95a9fd701e21b34d3a2f92275d6f1eb77f8f70ed3250dd1bf00c9cbe51d5e93858a5d9f56bbf3cec2aa6203274342dbb5638da3269a9bd7af7fa5c1e42cde7a6

  • SSDEEP

    768:qTVbxjgQNQXtckstOOtEvwDpjAaD3TUogs/VXpAPWRdaU:qTJu9cvMOtEvwDpjppVXzRP

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-10_48418da239722b2db6258faeba6912a0_cryptolocker

    • Size

      39KB

    • MD5

      48418da239722b2db6258faeba6912a0

    • SHA1

      4ed8ead22c5afd3ccecf13910074b4ec6b6a6267

    • SHA256

      51787962a97be0844fd182c5399d2f813888ad9095ee26eae1781c7b285c49c1

    • SHA512

      95a9fd701e21b34d3a2f92275d6f1eb77f8f70ed3250dd1bf00c9cbe51d5e93858a5d9f56bbf3cec2aa6203274342dbb5638da3269a9bd7af7fa5c1e42cde7a6

    • SSDEEP

      768:qTVbxjgQNQXtckstOOtEvwDpjAaD3TUogs/VXpAPWRdaU:qTJu9cvMOtEvwDpjppVXzRP

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks