Overview

overview

10

Static

static

10

2024-01-27...er.exe

windows7-x64

9

2024-01-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-27_202e4b9038e0abf86612c09c99dc060b_cryptolocker

  • Size

    88KB

  • Sample

    240127-nj5pfachbn

  • MD5

    202e4b9038e0abf86612c09c99dc060b

  • SHA1

    87196b5c9086f0c2a50d4cff69735efbbeca3706

  • SHA256

    f2914780d628283869207b8aa1dd6d80417c4cda488ddfdaf114391200ab14e0

  • SHA512

    c8b0314b9252994b74e599028a46b6fc265c8d4d9c36fde6b61147441f0514c5fd9cd19c64bc6dbac2f3013e73e9e3b787711de43acbeedc88778d166cc794a5

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQN4:vCjsIOtEvwDpj5H8zPsc

Score
10/10

Malware Config

Targets

    • Target

      2024-01-27_202e4b9038e0abf86612c09c99dc060b_cryptolocker

    • Size

      88KB

    • MD5

      202e4b9038e0abf86612c09c99dc060b

    • SHA1

      87196b5c9086f0c2a50d4cff69735efbbeca3706

    • SHA256

      f2914780d628283869207b8aa1dd6d80417c4cda488ddfdaf114391200ab14e0

    • SHA512

      c8b0314b9252994b74e599028a46b6fc265c8d4d9c36fde6b61147441f0514c5fd9cd19c64bc6dbac2f3013e73e9e3b787711de43acbeedc88778d166cc794a5

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQN4:vCjsIOtEvwDpj5H8zPsc

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks