Overview

overview

10

Static

static

10

2024-02-20...er.exe

windows7-x64

9

2024-02-20...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-20_347ef8c004bcc5fd12ab12a5acb73d81_cryptolocker

  • Size

    48KB

  • Sample

    240220-atqflsga7z

  • MD5

    347ef8c004bcc5fd12ab12a5acb73d81

  • SHA1

    23fe11d99b14e95daa86e007b59e3e2bcd48f270

  • SHA256

    f999d6ded1ae9d81702c2cf5ce95be54c19be5788dbf3e4c112f414a9524157b

  • SHA512

    df8fde874661d78c4950c0309772a482ed5477d24b6ee568f5aa872bbd2a459d93507161833ce7f570f881eb9087d38dc9501e1b9c6f92fb0f5b5c974df37845

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTa/p:79mqyNhQMOtEvwDpjBxe8L/p

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_347ef8c004bcc5fd12ab12a5acb73d81_cryptolocker

    • Size

      48KB

    • MD5

      347ef8c004bcc5fd12ab12a5acb73d81

    • SHA1

      23fe11d99b14e95daa86e007b59e3e2bcd48f270

    • SHA256

      f999d6ded1ae9d81702c2cf5ce95be54c19be5788dbf3e4c112f414a9524157b

    • SHA512

      df8fde874661d78c4950c0309772a482ed5477d24b6ee568f5aa872bbd2a459d93507161833ce7f570f881eb9087d38dc9501e1b9c6f92fb0f5b5c974df37845

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTa/p:79mqyNhQMOtEvwDpjBxe8L/p

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks