Overview

overview

10

Static

static

10

2024-02-20...er.exe

windows7-x64

9

2024-02-20...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-20_6b198d34ce65322d22896b97e8e1566b_cryptolocker

  • Size

    98KB

  • Sample

    240220-r1972aac92

  • MD5

    6b198d34ce65322d22896b97e8e1566b

  • SHA1

    3bf300758ef5694cc42c855b7cfb855890987e53

  • SHA256

    621afa94f7cb9e70a3462fc1ed5c643e8aa68be647987cd52d9cc8270c8ca779

  • SHA512

    4815a8056469484b248b2c35bc6b19eccc9a91bba78d935db99950df5c54f952ed13b0f9b5ab9921b9c551096c36809568735df7f9b96ec9227cab655f9204af

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgbwt:V6a+pOtEvwDpjtz5

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_6b198d34ce65322d22896b97e8e1566b_cryptolocker

    • Size

      98KB

    • MD5

      6b198d34ce65322d22896b97e8e1566b

    • SHA1

      3bf300758ef5694cc42c855b7cfb855890987e53

    • SHA256

      621afa94f7cb9e70a3462fc1ed5c643e8aa68be647987cd52d9cc8270c8ca779

    • SHA512

      4815a8056469484b248b2c35bc6b19eccc9a91bba78d935db99950df5c54f952ed13b0f9b5ab9921b9c551096c36809568735df7f9b96ec9227cab655f9204af

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgbwt:V6a+pOtEvwDpjtz5

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks