General

  • Target

    4cfea33c0f63f46219a23cdd61d552caf6c4501bc37ef982f2b09cfaf216f495

  • Size

    96KB

  • Sample

    240610-1q6arssfjn

  • MD5

    52e97d348b0c54b4bb22103de121e404

  • SHA1

    40da81df10fc4a9266a2b2bdc8d834aa641715bc

  • SHA256

    4cfea33c0f63f46219a23cdd61d552caf6c4501bc37ef982f2b09cfaf216f495

  • SHA512

    5a38261047b9d975a9fd19ccf598786d063f7e49c9cb24a5ab00b56f18e748296c2070f6fb0a7f50c11804c7811312de1a1427b04298f9e93bac2f0157077d06

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp0+8:AnBdOOtEvwDpj6z3

Score
10/10
upx

Malware Config

Targets

    • Target

      4cfea33c0f63f46219a23cdd61d552caf6c4501bc37ef982f2b09cfaf216f495

    • Size

      96KB

    • MD5

      52e97d348b0c54b4bb22103de121e404

    • SHA1

      40da81df10fc4a9266a2b2bdc8d834aa641715bc

    • SHA256

      4cfea33c0f63f46219a23cdd61d552caf6c4501bc37ef982f2b09cfaf216f495

    • SHA512

      5a38261047b9d975a9fd19ccf598786d063f7e49c9cb24a5ab00b56f18e748296c2070f6fb0a7f50c11804c7811312de1a1427b04298f9e93bac2f0157077d06

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp0+8:AnBdOOtEvwDpj6z3

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks