Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_d1580002443ec2b0656b765216785cf4_cryptolocker

  • Size

    69KB

  • Sample

    240128-vatn5sdhc5

  • MD5

    d1580002443ec2b0656b765216785cf4

  • SHA1

    94c75ba39ccb73c03f26522fe8eaacaacbc01d63

  • SHA256

    34d100da9195d4533601f5f655be3af0ffd99dbfe77f32a4e0176fa0ae0a4f97

  • SHA512

    3b2740bee2012edf2b2be276545726d8fe530aa951185404d03a5367bea03b382866835894b236d432476be4a6570c23a5f0ee0dbcc4b56d4e2711680405250e

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ry:vj+jsMQMOtEvwDpj5HZYTjipvF248N

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_d1580002443ec2b0656b765216785cf4_cryptolocker

    • Size

      69KB

    • MD5

      d1580002443ec2b0656b765216785cf4

    • SHA1

      94c75ba39ccb73c03f26522fe8eaacaacbc01d63

    • SHA256

      34d100da9195d4533601f5f655be3af0ffd99dbfe77f32a4e0176fa0ae0a4f97

    • SHA512

      3b2740bee2012edf2b2be276545726d8fe530aa951185404d03a5367bea03b382866835894b236d432476be4a6570c23a5f0ee0dbcc4b56d4e2711680405250e

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ry:vj+jsMQMOtEvwDpj5HZYTjipvF248N

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks