Overview

overview

10

Static

static

10

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-14_8478649014d99b9843b061d3b4e9775e_cryptolocker

  • Size

    80KB

  • Sample

    240214-tathpseg5x

  • MD5

    8478649014d99b9843b061d3b4e9775e

  • SHA1

    f1447cc263eb23acbc3664efafe532d2376ca87e

  • SHA256

    758f19a0b82f3b3723ebaa39ef998b4f7af54f6b968da59cfbd37d21e2f4ac68

  • SHA512

    7ebb106a92719797d1ac2abeb4dedc5f6acbfdc1fb0f4025564ec02653da80b8556879b21516e81bf98a93e665e4df02237a4d72cf23e1b6fbd226c0af514960

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMe:TCjsIOtEvwDpj5HE/OUHnSMs

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_8478649014d99b9843b061d3b4e9775e_cryptolocker

    • Size

      80KB

    • MD5

      8478649014d99b9843b061d3b4e9775e

    • SHA1

      f1447cc263eb23acbc3664efafe532d2376ca87e

    • SHA256

      758f19a0b82f3b3723ebaa39ef998b4f7af54f6b968da59cfbd37d21e2f4ac68

    • SHA512

      7ebb106a92719797d1ac2abeb4dedc5f6acbfdc1fb0f4025564ec02653da80b8556879b21516e81bf98a93e665e4df02237a4d72cf23e1b6fbd226c0af514960

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMe:TCjsIOtEvwDpj5HE/OUHnSMs

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks