Overview

overview

10

Static

static

10

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-29_b279dae102b7028f011e99a67d1bc899_cryptolocker

  • Size

    59KB

  • Sample

    240129-ppmlgsbben

  • MD5

    b279dae102b7028f011e99a67d1bc899

  • SHA1

    74802d34ee38ccccaca5f3eea03274e23e9f4bcc

  • SHA256

    1b2bd15f58253b073f62082c4748757d7c282ff070a2f65a6b7c3ef8d49222d8

  • SHA512

    14eca1ee1bac1e0c7328390b0ea6593c9a256b344c085edb9f5dc1545e93347ffb44f5b6bf4cf8a73b4c31b8ac83de88273d39de9ad6fda290fe8b09b22a1453

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMp:TCjsIOtEvwDpj5HE/OUHnSMK

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_b279dae102b7028f011e99a67d1bc899_cryptolocker

    • Size

      59KB

    • MD5

      b279dae102b7028f011e99a67d1bc899

    • SHA1

      74802d34ee38ccccaca5f3eea03274e23e9f4bcc

    • SHA256

      1b2bd15f58253b073f62082c4748757d7c282ff070a2f65a6b7c3ef8d49222d8

    • SHA512

      14eca1ee1bac1e0c7328390b0ea6593c9a256b344c085edb9f5dc1545e93347ffb44f5b6bf4cf8a73b4c31b8ac83de88273d39de9ad6fda290fe8b09b22a1453

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMp:TCjsIOtEvwDpj5HE/OUHnSMK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks