Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_2ae85844a1a841a285a5d5550201825a_cryptolocker

  • Size

    68KB

  • Sample

    240128-txwataddd3

  • MD5

    2ae85844a1a841a285a5d5550201825a

  • SHA1

    ca54558f24b3e95ee1bf91b8f6aa31d9b3737d9c

  • SHA256

    e6b5a8d7cd9302869c14c77ff0abf016142c6114f58146e652d8f85d99bfddce

  • SHA512

    4ced482c1fc65b0ff8056b1fd665c610d7eeb3d9ef9a2aedf85073e37a6743c0b9e18c1a67e5d6e628ee7bfe5a5c5bb7e5421298f8715222b4df6218670a2615

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ri:vj+jsMQMOtEvwDpj5HZYTjipvF2481

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_2ae85844a1a841a285a5d5550201825a_cryptolocker

    • Size

      68KB

    • MD5

      2ae85844a1a841a285a5d5550201825a

    • SHA1

      ca54558f24b3e95ee1bf91b8f6aa31d9b3737d9c

    • SHA256

      e6b5a8d7cd9302869c14c77ff0abf016142c6114f58146e652d8f85d99bfddce

    • SHA512

      4ced482c1fc65b0ff8056b1fd665c610d7eeb3d9ef9a2aedf85073e37a6743c0b9e18c1a67e5d6e628ee7bfe5a5c5bb7e5421298f8715222b4df6218670a2615

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ri:vj+jsMQMOtEvwDpj5HZYTjipvF2481

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks