Overview

overview

10

Static

static

10

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-29_e95653f6982e29609ac9224e01032084_cryptolocker

  • Size

    68KB

  • Sample

    240129-nyy57shbe3

  • MD5

    e95653f6982e29609ac9224e01032084

  • SHA1

    738f8130c5188b9d96c9c4de767faae3cd0472c5

  • SHA256

    18d1e60f05beb911f3da03e6d2faafc06e7c4cc39eff83a6f4cde6f78d251b65

  • SHA512

    86826fa0ddc0afccaff835003996f36f4a5197b4eac557fb50923df6208f787899a402caf2649a2d99e970ea2a3be52fd86ea0be81feb04627858773dd7aa7d0

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZC:DW60sllyWOtEvwDpjwF85k

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_e95653f6982e29609ac9224e01032084_cryptolocker

    • Size

      68KB

    • MD5

      e95653f6982e29609ac9224e01032084

    • SHA1

      738f8130c5188b9d96c9c4de767faae3cd0472c5

    • SHA256

      18d1e60f05beb911f3da03e6d2faafc06e7c4cc39eff83a6f4cde6f78d251b65

    • SHA512

      86826fa0ddc0afccaff835003996f36f4a5197b4eac557fb50923df6208f787899a402caf2649a2d99e970ea2a3be52fd86ea0be81feb04627858773dd7aa7d0

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZC:DW60sllyWOtEvwDpjwF85k

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks