Overview

overview

10

Static

static

10

2024-02-17...er.exe

windows7-x64

9

2024-02-17...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-17_d714293b8db427cb24110897c8314eea_cryptolocker

  • Size

    95KB

  • Sample

    240217-3nfcnsbg7s

  • MD5

    d714293b8db427cb24110897c8314eea

  • SHA1

    075830776ce16d0336413a6c69442fbf411f2cc8

  • SHA256

    22ea925b75a9cd8a74a43c197e93bf1854e9cf2235e1f34e224fb1f595a477c1

  • SHA512

    374698ae3656791e0fbc463567cf0b121dcee915d19de9c5e9f650144a925dd80289836d33b97316a28471e0582aa82fc0043a8e3ede6889ddd9b4a12b4c0c97

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpYg:V6a+pOtEvwDpjtza

Score
10/10

Malware Config

Targets

    • Target

      2024-02-17_d714293b8db427cb24110897c8314eea_cryptolocker

    • Size

      95KB

    • MD5

      d714293b8db427cb24110897c8314eea

    • SHA1

      075830776ce16d0336413a6c69442fbf411f2cc8

    • SHA256

      22ea925b75a9cd8a74a43c197e93bf1854e9cf2235e1f34e224fb1f595a477c1

    • SHA512

      374698ae3656791e0fbc463567cf0b121dcee915d19de9c5e9f650144a925dd80289836d33b97316a28471e0582aa82fc0043a8e3ede6889ddd9b4a12b4c0c97

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpYg:V6a+pOtEvwDpjtza

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks