51fba9bcf3977b1d408154b6c8deb016222bb604ab39f08f37aac56812a85a21 | Triage

Submit
Reports

Overview

overview

Static

static

2024-02-12...er.exe

windows7-x64

9

2024-02-12...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-02-12_80041a25539fcbaa8dfe99b3ecc05889_cryptolocker
Size

49KB
Sample

240212-v92h2acc79
MD5

80041a25539fcbaa8dfe99b3ecc05889
SHA1

7581916b7dffe84b187252bf96c36b75de10717a
SHA256

51fba9bcf3977b1d408154b6c8deb016222bb604ab39f08f37aac56812a85a21
SHA512

d9000110dcc947f04e9e6ed3d1d070b37782fa86a1a889a84ef3531e7313435380c7340b1868df03bb7d7aceab63e703f76c8be9ad487ea9a2b1ee78c36316d9
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKn:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7V

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-02-12_80041a25539fcbaa8dfe99b3ecc05889_cryptolocker.exe

Resource

win7-20231215-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-12_80041a25539fcbaa8dfe99b3ecc05889_cryptolocker.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-12_80041a25539fcbaa8dfe99b3ecc05889_cryptolocker
- Size
  
  49KB
- MD5
  
  80041a25539fcbaa8dfe99b3ecc05889
- SHA1
  
  7581916b7dffe84b187252bf96c36b75de10717a
- SHA256
  
  51fba9bcf3977b1d408154b6c8deb016222bb604ab39f08f37aac56812a85a21
- SHA512
  
  d9000110dcc947f04e9e6ed3d1d070b37782fa86a1a889a84ef3531e7313435380c7340b1868df03bb7d7aceab63e703f76c8be9ad487ea9a2b1ee78c36316d9
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKn:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7V
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy