Overview

overview

10

Static

static

10

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-29_bfafdc5f8c8f645c75d9ce4995053b84_cryptolocker

  • Size

    70KB

  • Sample

    240129-fch8vsbfep

  • MD5

    bfafdc5f8c8f645c75d9ce4995053b84

  • SHA1

    c8044d83852604448655573846f34fcfcc13f1fa

  • SHA256

    df5072553ad73b9b81f16142f26b530b8fd2b6a1e722ce0fdc78f2a27c67b9f7

  • SHA512

    605692436b3c2f5f1cde1f0743ad121f4efbe5531030fc37fde925537dd5da4bf8c67c295ec29821dda765c551c805906cbe644056f55ad49c055ac072e5a823

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUtbgg:DW60sllyWOtEvwDpjwF85d

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_bfafdc5f8c8f645c75d9ce4995053b84_cryptolocker

    • Size

      70KB

    • MD5

      bfafdc5f8c8f645c75d9ce4995053b84

    • SHA1

      c8044d83852604448655573846f34fcfcc13f1fa

    • SHA256

      df5072553ad73b9b81f16142f26b530b8fd2b6a1e722ce0fdc78f2a27c67b9f7

    • SHA512

      605692436b3c2f5f1cde1f0743ad121f4efbe5531030fc37fde925537dd5da4bf8c67c295ec29821dda765c551c805906cbe644056f55ad49c055ac072e5a823

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUtbgg:DW60sllyWOtEvwDpjwF85d

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks