Overview

overview

7

Static

static

5

2024-11-20...er.exe

windows7-x64

7

2024-11-20...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-11-20_a172c49903b3f8917297d7e8812d354c_cryptolocker

  • Size

    55KB

  • Sample

    241120-d4mn9a1aqp

  • MD5

    a172c49903b3f8917297d7e8812d354c

  • SHA1

    a84cd58a216fde68ed17046bcabb9b029d91c037

  • SHA256

    238ef626b1ae6f1721c5bf7ca30a7dfecc694299f0463704959ac86475510786

  • SHA512

    89b8ca53c9b261897fff06ad8267bb9458b8b0d408c2588ef98756c12f30870b97a4217839c1a45e8011403ffdabccd14f3e3f63f770a6e395f9405580e6c6ab

  • SSDEEP

    768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkgYC:z6QFElP6n+gKmddpMOtEvwDpj31ikgZ

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-11-20_a172c49903b3f8917297d7e8812d354c_cryptolocker

    • Size

      55KB

    • MD5

      a172c49903b3f8917297d7e8812d354c

    • SHA1

      a84cd58a216fde68ed17046bcabb9b029d91c037

    • SHA256

      238ef626b1ae6f1721c5bf7ca30a7dfecc694299f0463704959ac86475510786

    • SHA512

      89b8ca53c9b261897fff06ad8267bb9458b8b0d408c2588ef98756c12f30870b97a4217839c1a45e8011403ffdabccd14f3e3f63f770a6e395f9405580e6c6ab

    • SSDEEP

      768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkgYC:z6QFElP6n+gKmddpMOtEvwDpj31ikgZ

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks