Overview

overview

10

Static

static

10

2024-02-13...er.exe

windows7-x64

9

2024-02-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-13_e873e88a7df40763f3cf6e302c2d1d40_cryptolocker

  • Size

    132KB

  • Sample

    240213-zhcstahb5s

  • MD5

    e873e88a7df40763f3cf6e302c2d1d40

  • SHA1

    1188f010e128abbcc25409de0028ce954a047dc7

  • SHA256

    2e58a4b4bd36c6f04791dede3bbf4f630c8a46ce3c3a05e6a2919bec551d1bd4

  • SHA512

    ed803a26f922b7a963b9642a7192cfb6cdaa25fb7f009af0615f0980f4733074887d6c3c440768b5c71612055edfb04ff1751651d1b0a0a50cc9e4f150663d22

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbxGYQbxGYQbuN:V6a+pOtEvwDpjt22E

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_e873e88a7df40763f3cf6e302c2d1d40_cryptolocker

    • Size

      132KB

    • MD5

      e873e88a7df40763f3cf6e302c2d1d40

    • SHA1

      1188f010e128abbcc25409de0028ce954a047dc7

    • SHA256

      2e58a4b4bd36c6f04791dede3bbf4f630c8a46ce3c3a05e6a2919bec551d1bd4

    • SHA512

      ed803a26f922b7a963b9642a7192cfb6cdaa25fb7f009af0615f0980f4733074887d6c3c440768b5c71612055edfb04ff1751651d1b0a0a50cc9e4f150663d22

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbxGYQbxGYQbuN:V6a+pOtEvwDpjt22E

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks