Overview

overview

10

Static

static

10

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-14_ff08264fcc17b6c6a236a2b3d4665559_cryptolocker

  • Size

    31KB

  • Sample

    240214-wfrbmshc7x

  • MD5

    ff08264fcc17b6c6a236a2b3d4665559

  • SHA1

    2b9ef3266c3132adc0849eb186c71e5fd405a541

  • SHA256

    1f29bf90d7bb445f3dbe78e852ae4a3179a97784bbce0c3024a34602f88cf7ef

  • SHA512

    baeb144763c6c93c786d922f2da30a9a31082d02c7fd7392132d5979eec105b9d6086aacff01f25ec9f0146f88bea4338cf65e106340d4bde2ac1589f978c5e7

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9R0a2yW:b7o/2n1TCraU6GD1a4Xt9R0a7W

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_ff08264fcc17b6c6a236a2b3d4665559_cryptolocker

    • Size

      31KB

    • MD5

      ff08264fcc17b6c6a236a2b3d4665559

    • SHA1

      2b9ef3266c3132adc0849eb186c71e5fd405a541

    • SHA256

      1f29bf90d7bb445f3dbe78e852ae4a3179a97784bbce0c3024a34602f88cf7ef

    • SHA512

      baeb144763c6c93c786d922f2da30a9a31082d02c7fd7392132d5979eec105b9d6086aacff01f25ec9f0146f88bea4338cf65e106340d4bde2ac1589f978c5e7

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9R0a2yW:b7o/2n1TCraU6GD1a4Xt9R0a7W

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks