90b8094e39a6ecbd8c2850d9da2ff4af03e642cfea3de4d306e0f05dbb94b320 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

2024-09-06...er.exe

windows7-x64

7

2024-09-06...er.exe

windows10-2004-x64

7

Sharing

General

Target

2024-09-06_ca021aba19fd97076183341082eeab24_cryptolocker
Size

26KB
Sample

240906-bat55axcpp
MD5

ca021aba19fd97076183341082eeab24
SHA1

f84edac5ceb4d9d6d93fe1b4ce73311987d03e14
SHA256

90b8094e39a6ecbd8c2850d9da2ff4af03e642cfea3de4d306e0f05dbb94b320
SHA512

da0da377e5549a4076bbd9bb41ee14ace9d4c25684d9c2b14015f0e28fa53f8a98272a4d973234b84ce7538cdf76742d01b90077dd56e88a42574ee624c9a121
SSDEEP

384:bVCPwFRuFn65arz1ZhdaXFXSCVQTLfjDp6HMmHBdao:bVCPwFRo6CpwXFXSqQXfjAsmHBdJ

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-09-06_ca021aba19fd97076183341082eeab24_cryptolocker.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-09-06_ca021aba19fd97076183341082eeab24_cryptolocker.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-09-06_ca021aba19fd97076183341082eeab24_cryptolocker
- Size
  
  26KB
- MD5
  
  ca021aba19fd97076183341082eeab24
- SHA1
  
  f84edac5ceb4d9d6d93fe1b4ce73311987d03e14
- SHA256
  
  90b8094e39a6ecbd8c2850d9da2ff4af03e642cfea3de4d306e0f05dbb94b320
- SHA512
  
  da0da377e5549a4076bbd9bb41ee14ace9d4c25684d9c2b14015f0e28fa53f8a98272a4d973234b84ce7538cdf76742d01b90077dd56e88a42574ee624c9a121
- SSDEEP
  
  384:bVCPwFRuFn65arz1ZhdaXFXSCVQTLfjDp6HMmHBdao:bVCPwFRo6CpwXFXSqQXfjAsmHBdJ
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy