Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_3515862b66421fb63e542fa8b805e82e_cryptolocker

  • Size

    384KB

  • Sample

    240128-3ee1jscfh9

  • MD5

    3515862b66421fb63e542fa8b805e82e

  • SHA1

    d44932cc1137249f5eca53826acd9b37a9e45e92

  • SHA256

    a0debfc84156e23269fcc1c8073da65b701c0f941fa9b459d7e1add0ed1f8574

  • SHA512

    54c34a93d52bd645327fd61ba0b037adbe93ee0e2ee1ad020ce9d55a408c48038552adf47e556fa89f1fee26583800645699eb479d461ee60df170e8c2e553c4

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzX1:nnOflT/ZFIjBz3xjTxynGUOUhX1

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_3515862b66421fb63e542fa8b805e82e_cryptolocker

    • Size

      384KB

    • MD5

      3515862b66421fb63e542fa8b805e82e

    • SHA1

      d44932cc1137249f5eca53826acd9b37a9e45e92

    • SHA256

      a0debfc84156e23269fcc1c8073da65b701c0f941fa9b459d7e1add0ed1f8574

    • SHA512

      54c34a93d52bd645327fd61ba0b037adbe93ee0e2ee1ad020ce9d55a408c48038552adf47e556fa89f1fee26583800645699eb479d461ee60df170e8c2e553c4

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzX1:nnOflT/ZFIjBz3xjTxynGUOUhX1

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks