Overview

overview

10

Static

static

10

2024-02-18...er.exe

windows7-x64

9

2024-02-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-18_df7f357dcd3cab96dba664a5cfabe6de_cryptolocker

  • Size

    35KB

  • Sample

    240218-n8hk7sac39

  • MD5

    df7f357dcd3cab96dba664a5cfabe6de

  • SHA1

    7063683e9f9a73715aa9498ddc4f0002eddd697d

  • SHA256

    f4ed54b04493a771c61312a280894e88e535995fbf1f2acde6be34216bf466e5

  • SHA512

    1bacdac947265f29fdd9f58ace68919b941c8f660f3bd4280f756a8a1c68a9857b35bd130b6cd3b57a0a33c3774d35ca05081895826fe96277d864e77ba18a79

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunow:btB9g/WItCSsAGjX7e9N0hunow

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_df7f357dcd3cab96dba664a5cfabe6de_cryptolocker

    • Size

      35KB

    • MD5

      df7f357dcd3cab96dba664a5cfabe6de

    • SHA1

      7063683e9f9a73715aa9498ddc4f0002eddd697d

    • SHA256

      f4ed54b04493a771c61312a280894e88e535995fbf1f2acde6be34216bf466e5

    • SHA512

      1bacdac947265f29fdd9f58ace68919b941c8f660f3bd4280f756a8a1c68a9857b35bd130b6cd3b57a0a33c3774d35ca05081895826fe96277d864e77ba18a79

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunow:btB9g/WItCSsAGjX7e9N0hunow

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks