Overview

overview

10

Static

static

10

2024-01-25...er.exe

windows7-x64

9

2024-01-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-25_cdda5994d9edaac863657e2788c42d45_cryptolocker

  • Size

    38KB

  • Sample

    240125-1agbpsgfcp

  • MD5

    cdda5994d9edaac863657e2788c42d45

  • SHA1

    7399c25deb81eb3cf36fb7cf3deaea1d53654599

  • SHA256

    665bc86a9a0d4fc9c6bf5ab574f31e387403b0447d851d90d6abe74cc3cf8ff9

  • SHA512

    c4ed329ecb9c3238378d6b871a506eb8db3aa53ea7a985e054749621f3be831fe659210f0888af9ae63fb59b0a7756c6ce106380c34f501c7350aeea4855f773

  • SSDEEP

    384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/Wcz0BVFC:79inqyNR/QtOOtEvwDpjBKcmq

Score
10/10

Malware Config

Targets

    • Target

      2024-01-25_cdda5994d9edaac863657e2788c42d45_cryptolocker

    • Size

      38KB

    • MD5

      cdda5994d9edaac863657e2788c42d45

    • SHA1

      7399c25deb81eb3cf36fb7cf3deaea1d53654599

    • SHA256

      665bc86a9a0d4fc9c6bf5ab574f31e387403b0447d851d90d6abe74cc3cf8ff9

    • SHA512

      c4ed329ecb9c3238378d6b871a506eb8db3aa53ea7a985e054749621f3be831fe659210f0888af9ae63fb59b0a7756c6ce106380c34f501c7350aeea4855f773

    • SSDEEP

      384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/Wcz0BVFC:79inqyNR/QtOOtEvwDpjBKcmq

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks