Overview

overview

10

Static

static

10

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-14_10ac5c60bbe481e05b9e1bef5ffdf9ca_cryptolocker

  • Size

    49KB

  • Sample

    240214-rrkk1sda6z

  • MD5

    10ac5c60bbe481e05b9e1bef5ffdf9ca

  • SHA1

    12f2f6f60393fba8c8b30a1f680da472d1dfe1b9

  • SHA256

    798a0bfb20d5cc0fa1d791ab20d06fce3351daed8cbdea9717dc4c29add35a25

  • SHA512

    18699b5f300e63fc9e664c9d7ab0ac43c4752d944ef086a5bd82866677e2458cf0af3bfeb67df6d5ed5a43ca3a77ee65ff4c5d7b288963b702116641c8fce069

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQPdUv/v:BbdDmjr+OtEvwDpjMXy

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_10ac5c60bbe481e05b9e1bef5ffdf9ca_cryptolocker

    • Size

      49KB

    • MD5

      10ac5c60bbe481e05b9e1bef5ffdf9ca

    • SHA1

      12f2f6f60393fba8c8b30a1f680da472d1dfe1b9

    • SHA256

      798a0bfb20d5cc0fa1d791ab20d06fce3351daed8cbdea9717dc4c29add35a25

    • SHA512

      18699b5f300e63fc9e664c9d7ab0ac43c4752d944ef086a5bd82866677e2458cf0af3bfeb67df6d5ed5a43ca3a77ee65ff4c5d7b288963b702116641c8fce069

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQPdUv/v:BbdDmjr+OtEvwDpjMXy

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks