Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_70a6f5bf679d4cfcb3e2264c668e1286_cryptolocker

  • Size

    60KB

  • Sample

    240128-jc813aeag9

  • MD5

    70a6f5bf679d4cfcb3e2264c668e1286

  • SHA1

    5c36d621fcdc667dea88113f5c1cd16ffeb55a72

  • SHA256

    86c39f131351bca98e7a694ef7d05a07879bc855d04ca54ceb3ac428ddb7902d

  • SHA512

    6692d9d60fe1772136aed9d776181e050a22112de1827822ffe94f13e7c372b466ae7837ee1355ee2ec53046176051d1f08f262da8bef6cca07921d0eb88cab2

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/xbY:X6a+SOtEvwDpjBrO2

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_70a6f5bf679d4cfcb3e2264c668e1286_cryptolocker

    • Size

      60KB

    • MD5

      70a6f5bf679d4cfcb3e2264c668e1286

    • SHA1

      5c36d621fcdc667dea88113f5c1cd16ffeb55a72

    • SHA256

      86c39f131351bca98e7a694ef7d05a07879bc855d04ca54ceb3ac428ddb7902d

    • SHA512

      6692d9d60fe1772136aed9d776181e050a22112de1827822ffe94f13e7c372b466ae7837ee1355ee2ec53046176051d1f08f262da8bef6cca07921d0eb88cab2

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/xbY:X6a+SOtEvwDpjBrO2

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks