Overview

overview

10

Static

static

10

2024-01-26...er.exe

windows7-x64

9

2024-01-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-26_0f0f687a5107d2460b778d5054333b05_cryptolocker

  • Size

    81KB

  • Sample

    240126-tvpp9ahfa2

  • MD5

    0f0f687a5107d2460b778d5054333b05

  • SHA1

    23badb59c85414c3bc3d872afb6138f1b33e0490

  • SHA256

    efa7e136816e97f6750d8782d468eaac3ad36652567358c0aa4c644334c33fdf

  • SHA512

    0065b5c31d7691cb4f22035c3507a2e4392bf3155f6a641d33a911fe6b42dbaba2d076177e3e97ce7ef8fa23a2a3d63fdc6bedcf4a287363afa12f300e39bdde

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAeu:TCjsIOtEvwDpj5HE/OUHnSM0

Score
10/10

Malware Config

Targets

    • Target

      2024-01-26_0f0f687a5107d2460b778d5054333b05_cryptolocker

    • Size

      81KB

    • MD5

      0f0f687a5107d2460b778d5054333b05

    • SHA1

      23badb59c85414c3bc3d872afb6138f1b33e0490

    • SHA256

      efa7e136816e97f6750d8782d468eaac3ad36652567358c0aa4c644334c33fdf

    • SHA512

      0065b5c31d7691cb4f22035c3507a2e4392bf3155f6a641d33a911fe6b42dbaba2d076177e3e97ce7ef8fa23a2a3d63fdc6bedcf4a287363afa12f300e39bdde

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAeu:TCjsIOtEvwDpj5HE/OUHnSM0

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks