Overview

overview

10

Static

static

10

2024-02-12...er.exe

windows7-x64

9

2024-02-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-12_e8b921cd3e6d6e2fbd48e147273e995a_cryptolocker

  • Size

    43KB

  • Sample

    240212-whe2dscd65

  • MD5

    e8b921cd3e6d6e2fbd48e147273e995a

  • SHA1

    4394461a8599bc4a27d0befe369bcf684caf37dc

  • SHA256

    816b4f5dcc3e73624909d1349c482e83e297b72f8c7659c46a2ef279b22d80c3

  • SHA512

    2f51100b18e3233b0ad0f54a566f0d07cab1c836b172718e82af902fa7b79128b59d2aebeb9b132cdf2b23d432dc3614fc2194a24954a3aef0aa554cd59cd75a

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBKccJVODvccwX:79mqyNhQMOtEvwDpjBzck1o

Score
10/10

Malware Config

Targets

    • Target

      2024-02-12_e8b921cd3e6d6e2fbd48e147273e995a_cryptolocker

    • Size

      43KB

    • MD5

      e8b921cd3e6d6e2fbd48e147273e995a

    • SHA1

      4394461a8599bc4a27d0befe369bcf684caf37dc

    • SHA256

      816b4f5dcc3e73624909d1349c482e83e297b72f8c7659c46a2ef279b22d80c3

    • SHA512

      2f51100b18e3233b0ad0f54a566f0d07cab1c836b172718e82af902fa7b79128b59d2aebeb9b132cdf2b23d432dc3614fc2194a24954a3aef0aa554cd59cd75a

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBKccJVODvccwX:79mqyNhQMOtEvwDpjBzck1o

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks