Overview

overview

7

Static

static

5

2024-11-21...er.exe

windows7-x64

7

2024-11-21...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-11-21_2fe716d9b69a77df78e5d1be17298969_cryptolocker

  • Size

    64KB

  • Sample

    241121-haj4gstpcr

  • MD5

    2fe716d9b69a77df78e5d1be17298969

  • SHA1

    01fd6ed906d80c013a26f873d3434ae2a5ed4167

  • SHA256

    f20def35a5e5efc92f4f1a2c16ec8a646170845a22ef2e1297aad4ad89c4a341

  • SHA512

    56a71e61fa258488cffa63c582514f6227aa68ecce32fdb4bdb8d57549a57d2b47a5092ef53d6e993c6052bf7ed60a9d11222bfcfd60e902401bd34559dc5737

  • SSDEEP

    1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTOOZl:T6a+rdOOtEvwDpjNX

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-11-21_2fe716d9b69a77df78e5d1be17298969_cryptolocker

    • Size

      64KB

    • MD5

      2fe716d9b69a77df78e5d1be17298969

    • SHA1

      01fd6ed906d80c013a26f873d3434ae2a5ed4167

    • SHA256

      f20def35a5e5efc92f4f1a2c16ec8a646170845a22ef2e1297aad4ad89c4a341

    • SHA512

      56a71e61fa258488cffa63c582514f6227aa68ecce32fdb4bdb8d57549a57d2b47a5092ef53d6e993c6052bf7ed60a9d11222bfcfd60e902401bd34559dc5737

    • SSDEEP

      1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTOOZl:T6a+rdOOtEvwDpjNX

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks