Overview

overview

7

Static

static

7

2024-08-20...er.exe

windows7-x64

7

2024-08-20...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-08-20_cea8f81f9a297ce65296a24d69f112df_cryptolocker

  • Size

    39KB

  • Sample

    240820-xcn8jsxelf

  • MD5

    cea8f81f9a297ce65296a24d69f112df

  • SHA1

    714ba93b8755d099a3de2554e0a0786fdd9aded3

  • SHA256

    29de592f2277be43893543c41b0a07d36da8558c1273340adb8d060d1e288f68

  • SHA512

    e9a905a0db6845c61ecfe549c124566ba1ed664a4dc79d2217a8080ccdfea91b71f8d00f6c379806672e70d425b4625b329d5556f4d3089ab2249d6e6012301b

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITL:qDdFJy3QMOtEvwDpjjWMl7TL

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-08-20_cea8f81f9a297ce65296a24d69f112df_cryptolocker

    • Size

      39KB

    • MD5

      cea8f81f9a297ce65296a24d69f112df

    • SHA1

      714ba93b8755d099a3de2554e0a0786fdd9aded3

    • SHA256

      29de592f2277be43893543c41b0a07d36da8558c1273340adb8d060d1e288f68

    • SHA512

      e9a905a0db6845c61ecfe549c124566ba1ed664a4dc79d2217a8080ccdfea91b71f8d00f6c379806672e70d425b4625b329d5556f4d3089ab2249d6e6012301b

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITL:qDdFJy3QMOtEvwDpjjWMl7TL

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks