Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_e813d343211c66720ea7b63c43bb0824_cryptolocker

  • Size

    33KB

  • Sample

    240128-p4ppdschen

  • MD5

    e813d343211c66720ea7b63c43bb0824

  • SHA1

    6878fb1a67ad83487a0623b498ba4b6027613e86

  • SHA256

    1e89b1b457fcdaa72ab7176575641b0fdc020b5ff9e4442cbf46e8c1583135ac

  • SHA512

    0321e3f6fdbce480d7b9139ffa5394e33adc1224ff399601b9e9198f1ceeb1550153f7a1b67d84d8d14bf86f8d116df845e83ce145acdc6bf2f30f3967d19851

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7+0:bxNrC7kYo1Fxf3s0Z

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_e813d343211c66720ea7b63c43bb0824_cryptolocker

    • Size

      33KB

    • MD5

      e813d343211c66720ea7b63c43bb0824

    • SHA1

      6878fb1a67ad83487a0623b498ba4b6027613e86

    • SHA256

      1e89b1b457fcdaa72ab7176575641b0fdc020b5ff9e4442cbf46e8c1583135ac

    • SHA512

      0321e3f6fdbce480d7b9139ffa5394e33adc1224ff399601b9e9198f1ceeb1550153f7a1b67d84d8d14bf86f8d116df845e83ce145acdc6bf2f30f3967d19851

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7+0:bxNrC7kYo1Fxf3s0Z

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks