General

  • Target

    2024-06-11_7339be82916b8e8ab280308df1de3509_cryptolocker

  • Size

    41KB

  • Sample

    240611-awsnraxakb

  • MD5

    7339be82916b8e8ab280308df1de3509

  • SHA1

    eacde81e4821cd793e3be04204edbc615cc17ff5

  • SHA256

    d4f546e6b18788cf49fff6c2f42809429a41abf498c1efc06dc1cf5520400e95

  • SHA512

    8f9dce297f96c9c8e15bd74203c1320302fcf67d98453286c4953cc5277e08e5fc54f223ca13838e83648252ce7ed5b4a0d6a220587a5f04d3a59d6155a006dc

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY/0F:qDdFJy3QMOtEvwDpjjWMl7Tp

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-11_7339be82916b8e8ab280308df1de3509_cryptolocker

    • Size

      41KB

    • MD5

      7339be82916b8e8ab280308df1de3509

    • SHA1

      eacde81e4821cd793e3be04204edbc615cc17ff5

    • SHA256

      d4f546e6b18788cf49fff6c2f42809429a41abf498c1efc06dc1cf5520400e95

    • SHA512

      8f9dce297f96c9c8e15bd74203c1320302fcf67d98453286c4953cc5277e08e5fc54f223ca13838e83648252ce7ed5b4a0d6a220587a5f04d3a59d6155a006dc

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY/0F:qDdFJy3QMOtEvwDpjjWMl7Tp

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks