Overview

overview

7

Static

static

7

2024-09-08...er.exe

windows7-x64

7

2024-09-08...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-09-08_dabe289260f057e2a4a5d4d4c475fe56_cryptolocker

  • Size

    40KB

  • Sample

    240908-dtr6zssfmk

  • MD5

    dabe289260f057e2a4a5d4d4c475fe56

  • SHA1

    91b64611e553906905623085aeff07b36bb2a56d

  • SHA256

    93e12b630c6627dc7ba9c013c71a2cd907eaba34876e89c7c3a67b524a9d6675

  • SHA512

    d1d36eeeb6b209cd273788350ac1e7b9ffa0dffe0e5b64de6e59e9808299160130a6612abf37720b440ac8720277067847a983851a3704f30093c61313c4125d

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYn:qDdFJy3QMOtEvwDpjjWMl7Te

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-09-08_dabe289260f057e2a4a5d4d4c475fe56_cryptolocker

    • Size

      40KB

    • MD5

      dabe289260f057e2a4a5d4d4c475fe56

    • SHA1

      91b64611e553906905623085aeff07b36bb2a56d

    • SHA256

      93e12b630c6627dc7ba9c013c71a2cd907eaba34876e89c7c3a67b524a9d6675

    • SHA512

      d1d36eeeb6b209cd273788350ac1e7b9ffa0dffe0e5b64de6e59e9808299160130a6612abf37720b440ac8720277067847a983851a3704f30093c61313c4125d

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYn:qDdFJy3QMOtEvwDpjjWMl7Te

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks