Overview

overview

10

Static

static

10

2024-01-24...er.exe

windows7-x64

9

2024-01-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-24_fa4b591aa4a7df3a796f25d06b6e45c2_cryptolocker

  • Size

    33KB

  • Sample

    240124-pvatwaaddr

  • MD5

    fa4b591aa4a7df3a796f25d06b6e45c2

  • SHA1

    891ad81fcb6a1ae1981b2535324a1283c165eecf

  • SHA256

    9636ab14ff35eb6349b6cde0480e5ca7048b199945da8a998deb59cd205f86fd

  • SHA512

    28a8fa630d7dc759c4d419bdf8b7a1e5865d56c91e3cfc29d2d289522b83bc2533fe590c08f6621866d9d8f16f9a310ce8599beb9a36eb8cc8e82646374eeac1

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUqMV6U8zKvGaLD:bA74zYcgT/Ekd0ryfj86U8zbS

Score
10/10

Malware Config

Targets

    • Target

      2024-01-24_fa4b591aa4a7df3a796f25d06b6e45c2_cryptolocker

    • Size

      33KB

    • MD5

      fa4b591aa4a7df3a796f25d06b6e45c2

    • SHA1

      891ad81fcb6a1ae1981b2535324a1283c165eecf

    • SHA256

      9636ab14ff35eb6349b6cde0480e5ca7048b199945da8a998deb59cd205f86fd

    • SHA512

      28a8fa630d7dc759c4d419bdf8b7a1e5865d56c91e3cfc29d2d289522b83bc2533fe590c08f6621866d9d8f16f9a310ce8599beb9a36eb8cc8e82646374eeac1

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUqMV6U8zKvGaLD:bA74zYcgT/Ekd0ryfj86U8zbS

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks