General

  • Target

    2024-06-13_9afdd667305b5ea8f43068ec93b48136_cryptolocker

  • Size

    82KB

  • Sample

    240613-ldly2asfpe

  • MD5

    9afdd667305b5ea8f43068ec93b48136

  • SHA1

    f05a78f4a258f5a80a054e0c08fba9d883b5a41a

  • SHA256

    d547bd596b3310029e868200961ac398385fed59a4267ad1e2d1d62c296665a3

  • SHA512

    2f5ef8201111558f5473bd468efbff372a8d8d9247a1745f335fff2845180585535f0efab945b48f49c09ed48f49bad3efef364fd2d3fc77dfb91cf6f75ef8c9

  • SSDEEP

    1536:zj+soPSMOtEvwDpj4ktBl01hJ0tq1ky7QiJ:zCsanOtEvwDpju

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-13_9afdd667305b5ea8f43068ec93b48136_cryptolocker

    • Size

      82KB

    • MD5

      9afdd667305b5ea8f43068ec93b48136

    • SHA1

      f05a78f4a258f5a80a054e0c08fba9d883b5a41a

    • SHA256

      d547bd596b3310029e868200961ac398385fed59a4267ad1e2d1d62c296665a3

    • SHA512

      2f5ef8201111558f5473bd468efbff372a8d8d9247a1745f335fff2845180585535f0efab945b48f49c09ed48f49bad3efef364fd2d3fc77dfb91cf6f75ef8c9

    • SSDEEP

      1536:zj+soPSMOtEvwDpj4ktBl01hJ0tq1ky7QiJ:zCsanOtEvwDpju

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks