Overview

overview

7

Static

static

5

2024-10-04...er.exe

windows7-x64

7

2024-10-04...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-10-04_ca0570f8026336bb6c01150320376b9c_cryptolocker

  • Size

    28KB

  • Sample

    241004-ecr1bssgln

  • MD5

    ca0570f8026336bb6c01150320376b9c

  • SHA1

    1e95fa441d9139aaf9924b19317b4c0221d599db

  • SHA256

    c0e773ca9fb7fd5d99a4297963b191929a6dbe49b1086cd29d85c93c3b2a5e02

  • SHA512

    1ea04561af405e02a873bcc6f7b337a1479ecc07a4a611657d57d988314790b3148c0986ff450322346c5c85543b8be6e2e49fbe9fa8c7e29460d7c0d4c8ed49

  • SSDEEP

    384:bFgFQrdSmuQ8WFqxpj5cpyIuYxVe3FSr+OLfjDp+0g/HNblX7QCOBqT0:bFgm5zusFUB2preAr+Ofjg0STX73OBqY

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-10-04_ca0570f8026336bb6c01150320376b9c_cryptolocker

    • Size

      28KB

    • MD5

      ca0570f8026336bb6c01150320376b9c

    • SHA1

      1e95fa441d9139aaf9924b19317b4c0221d599db

    • SHA256

      c0e773ca9fb7fd5d99a4297963b191929a6dbe49b1086cd29d85c93c3b2a5e02

    • SHA512

      1ea04561af405e02a873bcc6f7b337a1479ecc07a4a611657d57d988314790b3148c0986ff450322346c5c85543b8be6e2e49fbe9fa8c7e29460d7c0d4c8ed49

    • SSDEEP

      384:bFgFQrdSmuQ8WFqxpj5cpyIuYxVe3FSr+OLfjDp+0g/HNblX7QCOBqT0:bFgm5zusFUB2preAr+Ofjg0STX73OBqY

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks