Overview

overview

7

Static

static

5

2024-10-12...er.exe

windows7-x64

7

2024-10-12...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-10-12_ab0616a8c2af2dca4b77598b13a4b3d6_cryptolocker

  • Size

    75KB

  • Sample

    241012-dklylszaqe

  • MD5

    ab0616a8c2af2dca4b77598b13a4b3d6

  • SHA1

    d0d18ad93dc84fbd20af6a266c573c063483be7e

  • SHA256

    8ced0cf1c98838aa210318ac3e2ab40cbfa3e42f276aaff86fa79405fd341405

  • SHA512

    bf4ca836c1f9a9a406e2355b8bc29f808ffbddd27ea76489fa05c41a28ac488d2c7964cec99e9e4af661e78402c15afe68c85d16a660320e2454cf56a6c06852

  • SSDEEP

    1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsal81Gv:1nK6a+qdOOtEvwDpjm

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-10-12_ab0616a8c2af2dca4b77598b13a4b3d6_cryptolocker

    • Size

      75KB

    • MD5

      ab0616a8c2af2dca4b77598b13a4b3d6

    • SHA1

      d0d18ad93dc84fbd20af6a266c573c063483be7e

    • SHA256

      8ced0cf1c98838aa210318ac3e2ab40cbfa3e42f276aaff86fa79405fd341405

    • SHA512

      bf4ca836c1f9a9a406e2355b8bc29f808ffbddd27ea76489fa05c41a28ac488d2c7964cec99e9e4af661e78402c15afe68c85d16a660320e2454cf56a6c06852

    • SSDEEP

      1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsal81Gv:1nK6a+qdOOtEvwDpjm

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks