324623e56d07b6ec5b8c6c881798b61483cb545026ffd4c254bda0aef7f3e442 | Triage

Submit
Reports

Overview

overview

7

Static

static

5

2024-09-29...er.exe

windows7-x64

7

2024-09-29...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-29_2f4e6c7bd3db2a7cb2beb2ab465bd780_cryptolocker
Size

90KB
Sample

240929-mel6vszejp
MD5

2f4e6c7bd3db2a7cb2beb2ab465bd780
SHA1

4e68d6f6370fc54c8ce027677039747b1bbdf40a
SHA256

324623e56d07b6ec5b8c6c881798b61483cb545026ffd4c254bda0aef7f3e442
SHA512

fdb607926d0633d423e940bccf31f7bbdb5eae88b0828854a2ef4a0908b3a0f54670d2db38fa2bf6f522c6282705c9e1658d96a075ed81e56569d76fa281debf
SSDEEP

1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpQb/c:AnBdOOtEvwDpj6zk

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-09-29_2f4e6c7bd3db2a7cb2beb2ab465bd780_cryptolocker.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-09-29_2f4e6c7bd3db2a7cb2beb2ab465bd780_cryptolocker.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-09-29_2f4e6c7bd3db2a7cb2beb2ab465bd780_cryptolocker
- Size
  
  90KB
- MD5
  
  2f4e6c7bd3db2a7cb2beb2ab465bd780
- SHA1
  
  4e68d6f6370fc54c8ce027677039747b1bbdf40a
- SHA256
  
  324623e56d07b6ec5b8c6c881798b61483cb545026ffd4c254bda0aef7f3e442
- SHA512
  
  fdb607926d0633d423e940bccf31f7bbdb5eae88b0828854a2ef4a0908b3a0f54670d2db38fa2bf6f522c6282705c9e1658d96a075ed81e56569d76fa281debf
- SSDEEP
  
  1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpQb/c:AnBdOOtEvwDpj6zk
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy