Overview

overview

10

Static

static

10

2024-02-13...er.exe

windows7-x64

9

2024-02-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-13_6a29e16794a87fd0278e28151dfef49f_cryptolocker

  • Size

    36KB

  • Sample

    240213-p28dqaab9s

  • MD5

    6a29e16794a87fd0278e28151dfef49f

  • SHA1

    16c58351ccdeb0058e9255eb5b63e692ca350ff6

  • SHA256

    893481e304db9b6fe4e6446431db7fa50c992433978872fec2808e451f291937

  • SHA512

    6ec18a0bec3e1158bf44b2581e35c9c6b2f92f40913064c4d99e38808b46bdad3bb63edfa0c7d746e5982b4e85bbcc2dff139f28af9956c41f9e30370b2326e2

  • SSDEEP

    384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZrW:bgX4zYcgTEu6QOaryfjqDDw3sCu5qW

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_6a29e16794a87fd0278e28151dfef49f_cryptolocker

    • Size

      36KB

    • MD5

      6a29e16794a87fd0278e28151dfef49f

    • SHA1

      16c58351ccdeb0058e9255eb5b63e692ca350ff6

    • SHA256

      893481e304db9b6fe4e6446431db7fa50c992433978872fec2808e451f291937

    • SHA512

      6ec18a0bec3e1158bf44b2581e35c9c6b2f92f40913064c4d99e38808b46bdad3bb63edfa0c7d746e5982b4e85bbcc2dff139f28af9956c41f9e30370b2326e2

    • SSDEEP

      384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZrW:bgX4zYcgTEu6QOaryfjqDDw3sCu5qW

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks