Overview

overview

10

Static

static

10

2024-02-04...er.exe

windows7-x64

9

2024-02-04...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-04_a164427cd50b27593c8253b6c587aefe_cryptolocker

  • Size

    149KB

  • Sample

    240204-sze6yadbc5

  • MD5

    a164427cd50b27593c8253b6c587aefe

  • SHA1

    48abbb6e2542089e6a62e1c1b5ac8362793fb43a

  • SHA256

    8dbe8dd87884556a5a59e5980cab5e7c98b1593364d23a5dad8e6349b3d35938

  • SHA512

    5a9c537e1407697b7bc326f4e36fdae7af8466482952f8f3bd8424ff592e2385ff3f350468083799f3558b0afdf7176fea2a429b5f204567f42f83988e114081

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbxGYQbxGYQbPlooHPPFYrPu:V6a+pOtEvwDpjt22P

Score
10/10

Malware Config

Targets

    • Target

      2024-02-04_a164427cd50b27593c8253b6c587aefe_cryptolocker

    • Size

      149KB

    • MD5

      a164427cd50b27593c8253b6c587aefe

    • SHA1

      48abbb6e2542089e6a62e1c1b5ac8362793fb43a

    • SHA256

      8dbe8dd87884556a5a59e5980cab5e7c98b1593364d23a5dad8e6349b3d35938

    • SHA512

      5a9c537e1407697b7bc326f4e36fdae7af8466482952f8f3bd8424ff592e2385ff3f350468083799f3558b0afdf7176fea2a429b5f204567f42f83988e114081

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbxGYQbxGYQbPlooHPPFYrPu:V6a+pOtEvwDpjt22P

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks