Overview

overview

7

Static

static

5

2024-11-20...er.exe

windows7-x64

7

2024-11-20...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-11-20_80e28cb91858e9d74e37e0c0829676e8_cryptolocker

  • Size

    40KB

  • Sample

    241120-f4hfms1rft

  • MD5

    80e28cb91858e9d74e37e0c0829676e8

  • SHA1

    0b42dde28db518dff1c0638991d4a1e47c3b6bf4

  • SHA256

    41c5e8831c6fbfd670193381f338867ce52c5f0806e3f22bffa5e16a25b18e6a

  • SHA512

    cdd1e58d5a89b272564fcd52d8911fc29235838dfa4aab30c38ad8dbda10458b679c2332c39f365a5c17e75a8df734c6749fb81fee7314baacb05846b20d69d2

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDNHu:qDdFJy3QMOtEvwDpjjWMl7TdVO

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-11-20_80e28cb91858e9d74e37e0c0829676e8_cryptolocker

    • Size

      40KB

    • MD5

      80e28cb91858e9d74e37e0c0829676e8

    • SHA1

      0b42dde28db518dff1c0638991d4a1e47c3b6bf4

    • SHA256

      41c5e8831c6fbfd670193381f338867ce52c5f0806e3f22bffa5e16a25b18e6a

    • SHA512

      cdd1e58d5a89b272564fcd52d8911fc29235838dfa4aab30c38ad8dbda10458b679c2332c39f365a5c17e75a8df734c6749fb81fee7314baacb05846b20d69d2

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDNHu:qDdFJy3QMOtEvwDpjjWMl7TdVO

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks