Overview

overview

10

Static

static

10

2024-02-19...er.exe

windows7-x64

9

2024-02-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-19_95e5ab531eee27ee8646ef5e9c7739d6_cryptolocker

  • Size

    90KB

  • Sample

    240219-zd5yssdc49

  • MD5

    95e5ab531eee27ee8646ef5e9c7739d6

  • SHA1

    f8d93fce29f4012d465200dfd366eabc60afe641

  • SHA256

    5e17ff0bc9a224294601e5020c6d3f49755a2665c2c344bef653af29ec98fbee

  • SHA512

    e9f97633df1ec3402448d52b681fe6fa8f44acf449485d234956eef54a299fbcc93eac519bd9e12b7f829ad47a9601648a719eb8b9bbef3f84feac3598b6404d

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQNpD:vCjsIOtEvwDpj5H8zPsp

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_95e5ab531eee27ee8646ef5e9c7739d6_cryptolocker

    • Size

      90KB

    • MD5

      95e5ab531eee27ee8646ef5e9c7739d6

    • SHA1

      f8d93fce29f4012d465200dfd366eabc60afe641

    • SHA256

      5e17ff0bc9a224294601e5020c6d3f49755a2665c2c344bef653af29ec98fbee

    • SHA512

      e9f97633df1ec3402448d52b681fe6fa8f44acf449485d234956eef54a299fbcc93eac519bd9e12b7f829ad47a9601648a719eb8b9bbef3f84feac3598b6404d

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQNpD:vCjsIOtEvwDpj5H8zPsp

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks