Overview

overview

10

Static

static

10

2024-02-20...er.exe

windows7-x64

9

2024-02-20...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-20_bc2e49aa99e5791706982278f46c8436_cryptolocker

  • Size

    49KB

  • Sample

    240220-nvyehaff3z

  • MD5

    bc2e49aa99e5791706982278f46c8436

  • SHA1

    085c51a743f911eae9c0421bf3df047a5cd065d3

  • SHA256

    cb830b5c7379970f01fbc4c92286fa2a5d56bbf762678362d74844711c15c6ae

  • SHA512

    ca48ccff07fd4f5e6e8335550b68926bd2e1b2e462772684e66dad66a5a5c853ef587e82c00b238127e9d2dea027a3ad491a25770a4ca9e91ec9d7cba8503f51

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQPdUve:BbdDmjr+OtEvwDpjMXL

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_bc2e49aa99e5791706982278f46c8436_cryptolocker

    • Size

      49KB

    • MD5

      bc2e49aa99e5791706982278f46c8436

    • SHA1

      085c51a743f911eae9c0421bf3df047a5cd065d3

    • SHA256

      cb830b5c7379970f01fbc4c92286fa2a5d56bbf762678362d74844711c15c6ae

    • SHA512

      ca48ccff07fd4f5e6e8335550b68926bd2e1b2e462772684e66dad66a5a5c853ef587e82c00b238127e9d2dea027a3ad491a25770a4ca9e91ec9d7cba8503f51

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQPdUve:BbdDmjr+OtEvwDpjMXL

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks