Overview

overview

10

Static

static

10

2024-01-25...er.exe

windows7-x64

9

2024-01-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-25_9e0b045629be8212918f45a3b6c8a37a_cryptolocker

  • Size

    69KB

  • Sample

    240125-pvdkrsgehn

  • MD5

    9e0b045629be8212918f45a3b6c8a37a

  • SHA1

    9e0320ed036db76731e7663637d5ff29eaa2edd5

  • SHA256

    12bff448ca6e9ce8470f33116e1943ca88916ab90cfe728b09b536eb35bf0013

  • SHA512

    409bd0d5569fbde6a5682654bd30c12af7b6ac8bee5d0e336032df0f0f9889926bd71a5d0d3991892b82acaee99e09931b99dda9a107b5a51973dbbd49b582e0

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKU1Y:DW60sllyWOtEvwDpjwF850

Score
10/10

Malware Config

Targets

    • Target

      2024-01-25_9e0b045629be8212918f45a3b6c8a37a_cryptolocker

    • Size

      69KB

    • MD5

      9e0b045629be8212918f45a3b6c8a37a

    • SHA1

      9e0320ed036db76731e7663637d5ff29eaa2edd5

    • SHA256

      12bff448ca6e9ce8470f33116e1943ca88916ab90cfe728b09b536eb35bf0013

    • SHA512

      409bd0d5569fbde6a5682654bd30c12af7b6ac8bee5d0e336032df0f0f9889926bd71a5d0d3991892b82acaee99e09931b99dda9a107b5a51973dbbd49b582e0

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKU1Y:DW60sllyWOtEvwDpjwF850

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks