Overview

overview

10

Static

static

10

2024-02-01...er.exe

windows7-x64

9

2024-02-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-01_1119422ee478ef056a6a53795dc8e1c3_cryptolocker

  • Size

    127KB

  • Sample

    240201-kn67aaaaam

  • MD5

    1119422ee478ef056a6a53795dc8e1c3

  • SHA1

    0c74df85807ba2984d7c9d7612069fb8bac6da08

  • SHA256

    4ce4a2c2c6103bf44fcab5106aefa6f80af91e93e454d3414a7d9d1f1c88a222

  • SHA512

    809e1155423cc76f7c918ac58abb9f51ec25852fc8b554b386736c757339358a1777f717985922e66c55412adf86ec1d67ad8e2bbcc01c5d6d4e0e51cf1c656c

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//jx:vCjsIOtEvwDpj5H9YvQd2Rb

Score
10/10

Malware Config

Targets

    • Target

      2024-02-01_1119422ee478ef056a6a53795dc8e1c3_cryptolocker

    • Size

      127KB

    • MD5

      1119422ee478ef056a6a53795dc8e1c3

    • SHA1

      0c74df85807ba2984d7c9d7612069fb8bac6da08

    • SHA256

      4ce4a2c2c6103bf44fcab5106aefa6f80af91e93e454d3414a7d9d1f1c88a222

    • SHA512

      809e1155423cc76f7c918ac58abb9f51ec25852fc8b554b386736c757339358a1777f717985922e66c55412adf86ec1d67ad8e2bbcc01c5d6d4e0e51cf1c656c

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//jx:vCjsIOtEvwDpj5H9YvQd2Rb

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks