Overview

overview

10

Static

static

10

2024-01-26...er.exe

windows7-x64

9

2024-01-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-26_91a7463e18838361f0e44bc869dc931b_cryptolocker

  • Size

    60KB

  • Sample

    240126-tzbdesbbhq

  • MD5

    91a7463e18838361f0e44bc869dc931b

  • SHA1

    cf882dd094167eb654327ae7f04b20e233013976

  • SHA256

    6db645bdda088092588e494323c019d81604d2fc62774eae5cc292b73f3e8e41

  • SHA512

    1b81cb0ca7a2a54786c83e67a840481693843143629e051a57433edff61b5ba0cdf199f6af6b6624dedcbfe5f4277e30c40765cb1b3bc7e67f51f4d5c2601f37

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTo:TCjsIOtEvwDpj5HE/OUHnSMr

Score
10/10

Malware Config

Targets

    • Target

      2024-01-26_91a7463e18838361f0e44bc869dc931b_cryptolocker

    • Size

      60KB

    • MD5

      91a7463e18838361f0e44bc869dc931b

    • SHA1

      cf882dd094167eb654327ae7f04b20e233013976

    • SHA256

      6db645bdda088092588e494323c019d81604d2fc62774eae5cc292b73f3e8e41

    • SHA512

      1b81cb0ca7a2a54786c83e67a840481693843143629e051a57433edff61b5ba0cdf199f6af6b6624dedcbfe5f4277e30c40765cb1b3bc7e67f51f4d5c2601f37

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTo:TCjsIOtEvwDpj5HE/OUHnSMr

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks