Overview

overview

10

Static

static

10

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-14_679f9835175778473758e78aac12a94e_cryptolocker

  • Size

    89KB

  • Sample

    240214-vemfmaha28

  • MD5

    679f9835175778473758e78aac12a94e

  • SHA1

    88891c4b38ecad6adcadc46831133dd030e03338

  • SHA256

    079926a667cc86a65b85fd190b088ed37a4fa0c857109f70d5e305af6bd636ea

  • SHA512

    3357666edffae149edc8a2f3efdf7803b5f8ac273ca7bdd14087fc40a919b750700d54cd71db68ea7b8e309fdcfe56b5c7370d9e3821f83dac8bd1738c2647d0

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQNK:vCjsIOtEvwDpj5H8zPs2

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_679f9835175778473758e78aac12a94e_cryptolocker

    • Size

      89KB

    • MD5

      679f9835175778473758e78aac12a94e

    • SHA1

      88891c4b38ecad6adcadc46831133dd030e03338

    • SHA256

      079926a667cc86a65b85fd190b088ed37a4fa0c857109f70d5e305af6bd636ea

    • SHA512

      3357666edffae149edc8a2f3efdf7803b5f8ac273ca7bdd14087fc40a919b750700d54cd71db68ea7b8e309fdcfe56b5c7370d9e3821f83dac8bd1738c2647d0

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQNK:vCjsIOtEvwDpj5H8zPs2

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks