Overview

overview

10

Static

static

10

2024-01-18...er.exe

windows7-x64

9

2024-01-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-18_7086304e6325702b8c2a5878b7f0bb4b_cryptolocker

  • Size

    59KB

  • Sample

    240118-2v5epsdcen

  • MD5

    7086304e6325702b8c2a5878b7f0bb4b

  • SHA1

    1a514d05d7f430348c0f5213f683be19d271bc84

  • SHA256

    857b7620aac415b4ca6a38bee06c609a813a92ff1c97f1631e5fdbd96ef6a601

  • SHA512

    7484baf9ed83179da2faaa112921c5c826af7cacdceadeee6cf455d5763879114f11397686330068d6c8b4ba5d278a71c9afc10be9f672497b2d60ef0b267eb9

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPv1:TCjsIOtEvwDpj5HE/OUHnSMYa

Score
10/10

Malware Config

Targets

    • Target

      2024-01-18_7086304e6325702b8c2a5878b7f0bb4b_cryptolocker

    • Size

      59KB

    • MD5

      7086304e6325702b8c2a5878b7f0bb4b

    • SHA1

      1a514d05d7f430348c0f5213f683be19d271bc84

    • SHA256

      857b7620aac415b4ca6a38bee06c609a813a92ff1c97f1631e5fdbd96ef6a601

    • SHA512

      7484baf9ed83179da2faaa112921c5c826af7cacdceadeee6cf455d5763879114f11397686330068d6c8b4ba5d278a71c9afc10be9f672497b2d60ef0b267eb9

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPv1:TCjsIOtEvwDpj5HE/OUHnSMYa

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks