General

  • Target

    2024-06-11_a27d077c73f6fc9edc377a5bd75aefef_cryptolocker

  • Size

    25KB

  • Sample

    240611-ayz6lsxerp

  • MD5

    a27d077c73f6fc9edc377a5bd75aefef

  • SHA1

    06cf65a8d37996c0b1aaa2567261415af11e8f3f

  • SHA256

    ec7115ee708fa31fc1768ff26b47efba2a18759d934ddf417fe422a50a890334

  • SHA512

    8bf91c53b06d8da2f21232ea3cafec785b21ffa6686fca836d5fbdaddbc1315f9b23c19d7a9ec099f497562a2e6779c36a61f21461f3d208bfe59b49ca260e66

  • SSDEEP

    384:bVCPwFRuFn65arz1ZhdaXFXSCVQTLfjDp6HMJ18:bVCPwFRo6CpwXFXSqQXfjAsJq

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-11_a27d077c73f6fc9edc377a5bd75aefef_cryptolocker

    • Size

      25KB

    • MD5

      a27d077c73f6fc9edc377a5bd75aefef

    • SHA1

      06cf65a8d37996c0b1aaa2567261415af11e8f3f

    • SHA256

      ec7115ee708fa31fc1768ff26b47efba2a18759d934ddf417fe422a50a890334

    • SHA512

      8bf91c53b06d8da2f21232ea3cafec785b21ffa6686fca836d5fbdaddbc1315f9b23c19d7a9ec099f497562a2e6779c36a61f21461f3d208bfe59b49ca260e66

    • SSDEEP

      384:bVCPwFRuFn65arz1ZhdaXFXSCVQTLfjDp6HMJ18:bVCPwFRo6CpwXFXSqQXfjAsJq

    Score
    9/10
    • Detection of CryptoLocker Variants

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks