Overview

overview

10

Static

static

10

2024-02-19...er.exe

windows7-x64

9

2024-02-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-19_8575c709017c199ce43a0bc42696add5_cryptolocker

  • Size

    385KB

  • Sample

    240219-b3mazsgh56

  • MD5

    8575c709017c199ce43a0bc42696add5

  • SHA1

    5be7fa4a8a3e0813fb8064e73576639c29832f3c

  • SHA256

    aa3b16dfad83a517968978b12e6a12cc0abf33b3e3e02cbbe1938ca69065e88d

  • SHA512

    db68b121ffbbeb72a20c8644154463f05e29e4502afd787bb993bda49a8b55a052c5693a4b396b55e8669da030feb5d55000e66e953a7c649dbe0f83d94c4f9d

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXY:nnOflT/ZFIjBz3xjTxynGUOUhXY

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_8575c709017c199ce43a0bc42696add5_cryptolocker

    • Size

      385KB

    • MD5

      8575c709017c199ce43a0bc42696add5

    • SHA1

      5be7fa4a8a3e0813fb8064e73576639c29832f3c

    • SHA256

      aa3b16dfad83a517968978b12e6a12cc0abf33b3e3e02cbbe1938ca69065e88d

    • SHA512

      db68b121ffbbeb72a20c8644154463f05e29e4502afd787bb993bda49a8b55a052c5693a4b396b55e8669da030feb5d55000e66e953a7c649dbe0f83d94c4f9d

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXY:nnOflT/ZFIjBz3xjTxynGUOUhXY

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks