Overview

overview

10

Static

static

10

2024-01-22...er.exe

windows7-x64

9

2024-01-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-22_ae8f7f05d74442d58624577dfed88fa2_cryptolocker

  • Size

    55KB

  • Sample

    240122-zg3mvadga6

  • MD5

    ae8f7f05d74442d58624577dfed88fa2

  • SHA1

    3c2d3f9414b2c133661367f7d061654414a2e73e

  • SHA256

    b6e00bd2607dc5f70c5c1a5f8887dbd00e12bd1ba2c6951dcf4f174c3d3248d4

  • SHA512

    d02f21d51632641930275cbea1587375dba050f2e6f1fe787682f9e76d254741682c3b7f4720ccc0318238474c16f5112a820ab9990537387534d1d48ebde4ce

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61o:BbdDmjr+OtEvwDpjMa

Score
10/10

Malware Config

Targets

    • Target

      2024-01-22_ae8f7f05d74442d58624577dfed88fa2_cryptolocker

    • Size

      55KB

    • MD5

      ae8f7f05d74442d58624577dfed88fa2

    • SHA1

      3c2d3f9414b2c133661367f7d061654414a2e73e

    • SHA256

      b6e00bd2607dc5f70c5c1a5f8887dbd00e12bd1ba2c6951dcf4f174c3d3248d4

    • SHA512

      d02f21d51632641930275cbea1587375dba050f2e6f1fe787682f9e76d254741682c3b7f4720ccc0318238474c16f5112a820ab9990537387534d1d48ebde4ce

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61o:BbdDmjr+OtEvwDpjMa

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks