Overview

overview

10

Static

static

10

2024-02-18...er.exe

windows7-x64

9

2024-02-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-18_4fd9cd47bb880313971e4680a266a1e8_cryptolocker

  • Size

    42KB

  • Sample

    240218-at5wasbh8z

  • MD5

    4fd9cd47bb880313971e4680a266a1e8

  • SHA1

    f5f4f8806e75fc8a49488fc926368bb3ec941ee8

  • SHA256

    aa667e381486ae7dab0ebf1b60f060a8b0610e6e516bbda5d80bddf0ac1d0b23

  • SHA512

    44504d612ab5dc09b5a4bbf2330799ce00439626fe9c57a3f4e786a88a92a6a44c66ba0f50a4198bf07c8b5d655d356933c0ca64f59e175a78ee3d5508c7b17a

  • SSDEEP

    768:btB9g/WItCSsAGjX7r3BPOMHocM4vUUOmJ+96eg6:btB9g/xtCSKfxLIcMzUw96O

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_4fd9cd47bb880313971e4680a266a1e8_cryptolocker

    • Size

      42KB

    • MD5

      4fd9cd47bb880313971e4680a266a1e8

    • SHA1

      f5f4f8806e75fc8a49488fc926368bb3ec941ee8

    • SHA256

      aa667e381486ae7dab0ebf1b60f060a8b0610e6e516bbda5d80bddf0ac1d0b23

    • SHA512

      44504d612ab5dc09b5a4bbf2330799ce00439626fe9c57a3f4e786a88a92a6a44c66ba0f50a4198bf07c8b5d655d356933c0ca64f59e175a78ee3d5508c7b17a

    • SSDEEP

      768:btB9g/WItCSsAGjX7r3BPOMHocM4vUUOmJ+96eg6:btB9g/xtCSKfxLIcMzUw96O

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks