f95efe4a04d6132a503a9086fba11b3a9e9603d83c9c098b3f8618cc202db148 | Triage

Submit
Reports

Overview

overview

Static

static

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-14_89d66787eed97d92bfd16869ef802bcc_cryptolocker
Size

41KB
Sample

240214-vnxmyshc54
MD5

89d66787eed97d92bfd16869ef802bcc
SHA1

3e3f6d344c309951af87a457e554286382e969cd
SHA256

f95efe4a04d6132a503a9086fba11b3a9e9603d83c9c098b3f8618cc202db148
SHA512

ecbd9f09354b646d0d03b68f92a9dd0abe9065a8d70e143110eb15c1d1256371a9059d95e4cef0af1c9863f2e3fa63b9052dc2685db79813617a4c364c18fc0a
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3Kx4:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XZ

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-02-14_89d66787eed97d92bfd16869ef802bcc_cryptolocker.exe

Resource

win7-20231215-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-14_89d66787eed97d92bfd16869ef802bcc_cryptolocker.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-14_89d66787eed97d92bfd16869ef802bcc_cryptolocker
- Size
  
  41KB
- MD5
  
  89d66787eed97d92bfd16869ef802bcc
- SHA1
  
  3e3f6d344c309951af87a457e554286382e969cd
- SHA256
  
  f95efe4a04d6132a503a9086fba11b3a9e9603d83c9c098b3f8618cc202db148
- SHA512
  
  ecbd9f09354b646d0d03b68f92a9dd0abe9065a8d70e143110eb15c1d1256371a9059d95e4cef0af1c9863f2e3fa63b9052dc2685db79813617a4c364c18fc0a
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3Kx4:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XZ
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy