Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_ffec908131626d25b5249fd7c5a47380_cryptolocker

  • Size

    31KB

  • Sample

    240128-eael8accgr

  • MD5

    ffec908131626d25b5249fd7c5a47380

  • SHA1

    f4861e3244298e24bec4f89aec0628819e703f50

  • SHA256

    b508b548e6c149326a4035c86cabb24945c8f69fb20cef29963a06ed38858640

  • SHA512

    a8b92fe22cc722695517c24ef6cb338c8c78b26b3a45d39413d20e3dc187b9d027fabccbc27dd8c1ee2103990c9b2cb5b1c3222a3981b467a35da0a236608036

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsz:bA74zYcgT/Ekd0ryfjPIunvsz

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_ffec908131626d25b5249fd7c5a47380_cryptolocker

    • Size

      31KB

    • MD5

      ffec908131626d25b5249fd7c5a47380

    • SHA1

      f4861e3244298e24bec4f89aec0628819e703f50

    • SHA256

      b508b548e6c149326a4035c86cabb24945c8f69fb20cef29963a06ed38858640

    • SHA512

      a8b92fe22cc722695517c24ef6cb338c8c78b26b3a45d39413d20e3dc187b9d027fabccbc27dd8c1ee2103990c9b2cb5b1c3222a3981b467a35da0a236608036

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsz:bA74zYcgT/Ekd0ryfjPIunvsz

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks