Overview

overview

10

Static

static

10

2024-01-27...er.exe

windows7-x64

9

2024-01-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-27_54c401fcd155c8fbe3e262f4fc727583_cryptolocker

  • Size

    78KB

  • Sample

    240127-swk8saege8

  • MD5

    54c401fcd155c8fbe3e262f4fc727583

  • SHA1

    ed762199835bb8d381dc0872e0ac708c5f84000b

  • SHA256

    2cfaa0c35103036b6a08386360d703b3588915130c0f71325eee19f2a36e3ce2

  • SHA512

    8a21526edfb1f2b20dc438d90c3eec19c02b92e415442bb0bbee77e0fa79c3a53ec73bc4e1bb0ad8c7f85be255007ffd89ff2d2207085f4c00be280ff55e8572

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHF/S:vCjsIOtEvwDpj5H9YvQd24

Score
10/10

Malware Config

Targets

    • Target

      2024-01-27_54c401fcd155c8fbe3e262f4fc727583_cryptolocker

    • Size

      78KB

    • MD5

      54c401fcd155c8fbe3e262f4fc727583

    • SHA1

      ed762199835bb8d381dc0872e0ac708c5f84000b

    • SHA256

      2cfaa0c35103036b6a08386360d703b3588915130c0f71325eee19f2a36e3ce2

    • SHA512

      8a21526edfb1f2b20dc438d90c3eec19c02b92e415442bb0bbee77e0fa79c3a53ec73bc4e1bb0ad8c7f85be255007ffd89ff2d2207085f4c00be280ff55e8572

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHF/S:vCjsIOtEvwDpj5H9YvQd24

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks