Overview

overview

7

Static

static

7

2024-09-19...er.exe

windows7-x64

7

2024-09-19...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-19_00182dfbe57888b4dfc04fcbafdd8c00_cryptolocker

  • Size

    96KB

  • Sample

    240919-ey79fa1arf

  • MD5

    00182dfbe57888b4dfc04fcbafdd8c00

  • SHA1

    626c081fd5b9d746ce9b95dfcdb59ca77a9d8b80

  • SHA256

    196a6caed5124dbfae3c9397f33ba63626860246e7451880d712225c65dc64f9

  • SHA512

    21e38fa8cdd58ec04a3c230bcef84b14ad0a164b40cd3b17ddd65a31532e9bfe48d097a3cbf37025a357a0e08a335dc065873cb189c64112a5143492abadf94c

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviPC:AnBdOOtEvwDpj6zU

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-09-19_00182dfbe57888b4dfc04fcbafdd8c00_cryptolocker

    • Size

      96KB

    • MD5

      00182dfbe57888b4dfc04fcbafdd8c00

    • SHA1

      626c081fd5b9d746ce9b95dfcdb59ca77a9d8b80

    • SHA256

      196a6caed5124dbfae3c9397f33ba63626860246e7451880d712225c65dc64f9

    • SHA512

      21e38fa8cdd58ec04a3c230bcef84b14ad0a164b40cd3b17ddd65a31532e9bfe48d097a3cbf37025a357a0e08a335dc065873cb189c64112a5143492abadf94c

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviPC:AnBdOOtEvwDpj6zU

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks