Overview

overview

10

Static

static

10

2024-01-18...er.exe

windows7-x64

9

2024-01-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-18_a23a26ec9c1e39b702d71c0f7964e140_cryptolocker

  • Size

    48KB

  • Sample

    240118-254k6afdd5

  • MD5

    a23a26ec9c1e39b702d71c0f7964e140

  • SHA1

    7f5a4cd785a0786288111450deaf90ca3353b2a7

  • SHA256

    37ec923f0307ba98b45426a764fda5dc66077f5f35f9b9a46f1d998e7c753530

  • SHA512

    6fb198b6210478c97c1e7cb2528eb6379433dcd40a0f643d37db89eab7293982e1f041a8412d8085610d634b22eeca46f84ae640c4299b5eacbafeb2f674d114

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Lv6h:BbdDmjr+OtEvwDpjMK

Score
10/10

Malware Config

Targets

    • Target

      2024-01-18_a23a26ec9c1e39b702d71c0f7964e140_cryptolocker

    • Size

      48KB

    • MD5

      a23a26ec9c1e39b702d71c0f7964e140

    • SHA1

      7f5a4cd785a0786288111450deaf90ca3353b2a7

    • SHA256

      37ec923f0307ba98b45426a764fda5dc66077f5f35f9b9a46f1d998e7c753530

    • SHA512

      6fb198b6210478c97c1e7cb2528eb6379433dcd40a0f643d37db89eab7293982e1f041a8412d8085610d634b22eeca46f84ae640c4299b5eacbafeb2f674d114

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Lv6h:BbdDmjr+OtEvwDpjMK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks