Overview

overview

10

Static

static

10

2024-02-12...er.exe

windows7-x64

9

2024-02-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-12_bb0d7c773ac8d793dc6c07bedefcbd6c_cryptolocker

  • Size

    49KB

  • Sample

    240212-a459tafe42

  • MD5

    bb0d7c773ac8d793dc6c07bedefcbd6c

  • SHA1

    bbfe1ad406f33d2cfd61bc84cd6e1aabcfbc085f

  • SHA256

    75140f3c3bb88cd4923b9fdfaabff9c696a12f15110ff78cdd24a564f218886c

  • SHA512

    2ce69d3871fca25e6252d7a5eca41da21e89a1bdeeef54ef53b00d3f861264db87caa38c80178e785a43a6da7231d55281b3c2e7bd50f2889bc18ad031ab9dbb

  • SSDEEP

    768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05WTB52s:qmbhXDmjr5MOtEvwDpj5cDtKkQZQ6us

Score
10/10

Malware Config

Targets

    • Target

      2024-02-12_bb0d7c773ac8d793dc6c07bedefcbd6c_cryptolocker

    • Size

      49KB

    • MD5

      bb0d7c773ac8d793dc6c07bedefcbd6c

    • SHA1

      bbfe1ad406f33d2cfd61bc84cd6e1aabcfbc085f

    • SHA256

      75140f3c3bb88cd4923b9fdfaabff9c696a12f15110ff78cdd24a564f218886c

    • SHA512

      2ce69d3871fca25e6252d7a5eca41da21e89a1bdeeef54ef53b00d3f861264db87caa38c80178e785a43a6da7231d55281b3c2e7bd50f2889bc18ad031ab9dbb

    • SSDEEP

      768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05WTB52s:qmbhXDmjr5MOtEvwDpj5cDtKkQZQ6us

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks