Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-28_70b041d461b5711890948898d7cdfc42_cryptolocker

  • Size

    119KB

  • Sample

    240128-f66k9aeafn

  • MD5

    70b041d461b5711890948898d7cdfc42

  • SHA1

    4d6ce486590b0dc2ba1cc382b335003c7a2e8dfc

  • SHA256

    0f2d2120c7b358f345ac78786ee8174257a25a5bc321573bd686fb830c52f536

  • SHA512

    0e4d6ec8140c46726389268b496ef6268a3f712e146e40771b09e69c40026b009ac6e83c9a71b5d388b89e03ec28a0f7469abec625fba4a1f1b1109ea29f23e4

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUSx:vCjsIOtEvwDpj5H9YvQd2a

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_70b041d461b5711890948898d7cdfc42_cryptolocker

    • Size

      119KB

    • MD5

      70b041d461b5711890948898d7cdfc42

    • SHA1

      4d6ce486590b0dc2ba1cc382b335003c7a2e8dfc

    • SHA256

      0f2d2120c7b358f345ac78786ee8174257a25a5bc321573bd686fb830c52f536

    • SHA512

      0e4d6ec8140c46726389268b496ef6268a3f712e146e40771b09e69c40026b009ac6e83c9a71b5d388b89e03ec28a0f7469abec625fba4a1f1b1109ea29f23e4

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUSx:vCjsIOtEvwDpj5H9YvQd2a

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks