General

  • Target

    2024-06-10_6feb3aa6ae0b59d82ef8b243abb27ab8_cryptolocker

  • Size

    39KB

  • Sample

    240610-fdjwsach82

  • MD5

    6feb3aa6ae0b59d82ef8b243abb27ab8

  • SHA1

    18a673a78c8ffbe112594edd049ca298ed5dd008

  • SHA256

    e66f8276d0074e1a2ac207ae40018a337177880c8d002f35f534c1d102d6adfd

  • SHA512

    bee54fe5cc20125ef7d599af3a7c07158b1cb44acd8c899b86ca4cd1c42ccb2c260744cd7cd7b01b2e575c11e5c6bf0de0e350ae27868a65276146f54f2a1db2

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYXtC:qDdFJy3QMOtEvwDpjjWMl7TYC

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-10_6feb3aa6ae0b59d82ef8b243abb27ab8_cryptolocker

    • Size

      39KB

    • MD5

      6feb3aa6ae0b59d82ef8b243abb27ab8

    • SHA1

      18a673a78c8ffbe112594edd049ca298ed5dd008

    • SHA256

      e66f8276d0074e1a2ac207ae40018a337177880c8d002f35f534c1d102d6adfd

    • SHA512

      bee54fe5cc20125ef7d599af3a7c07158b1cb44acd8c899b86ca4cd1c42ccb2c260744cd7cd7b01b2e575c11e5c6bf0de0e350ae27868a65276146f54f2a1db2

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYXtC:qDdFJy3QMOtEvwDpjjWMl7TYC

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks