a7b0a27d3c8057e2be5ec6e28b71f67ed52f28749d4f739d8f451b95e1eba7c8 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

2024-09-08...er.exe

windows7-x64

7

2024-09-08...er.exe

windows10-2004-x64

7

Sharing

General

Target

2024-09-08_eb6c2c0c052e057bcc946f5c29d7a5eb_cryptolocker
Size

28KB
Sample

240908-3cx4cazhnj
MD5

eb6c2c0c052e057bcc946f5c29d7a5eb
SHA1

d10afdb069a69a8282c848d5c82e26476c684483
SHA256

a7b0a27d3c8057e2be5ec6e28b71f67ed52f28749d4f739d8f451b95e1eba7c8
SHA512

3e0b41093e89b99af1282820b05bd4fe0ddf0d58b1bf9fa0bf10926b6f4eb040541a7cd781fbd9804423055e2f2bb632f04ded60489a0ae8c449899e89719186
SSDEEP

384:bFgFQrdSmuQ8WFqxpj5cpyIuYxVe3FSr+OLfjDp+0g/HNblX7QCOBqV:bFgm5zusFUB2preAr+Ofjg0STX73OBqV

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-09-08_eb6c2c0c052e057bcc946f5c29d7a5eb_cryptolocker.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-09-08_eb6c2c0c052e057bcc946f5c29d7a5eb_cryptolocker.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-09-08_eb6c2c0c052e057bcc946f5c29d7a5eb_cryptolocker
- Size
  
  28KB
- MD5
  
  eb6c2c0c052e057bcc946f5c29d7a5eb
- SHA1
  
  d10afdb069a69a8282c848d5c82e26476c684483
- SHA256
  
  a7b0a27d3c8057e2be5ec6e28b71f67ed52f28749d4f739d8f451b95e1eba7c8
- SHA512
  
  3e0b41093e89b99af1282820b05bd4fe0ddf0d58b1bf9fa0bf10926b6f4eb040541a7cd781fbd9804423055e2f2bb632f04ded60489a0ae8c449899e89719186
- SSDEEP
  
  384:bFgFQrdSmuQ8WFqxpj5cpyIuYxVe3FSr+OLfjDp+0g/HNblX7QCOBqV:bFgm5zusFUB2preAr+Ofjg0STX73OBqV
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy