Overview

overview

10

Static

static

10

2024-02-21...er.exe

windows7-x64

9

2024-02-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-21_b012edab390feae25a3da953310e1457_cryptolocker

  • Size

    49KB

  • Sample

    240221-ramn2sha83

  • MD5

    b012edab390feae25a3da953310e1457

  • SHA1

    f53eb302cbff19687fcd26619a82d13ec6fc9d6d

  • SHA256

    d6a9e1d073caa5cbeadc1d16088f19c1bfa50c938dc326f2580dc59f0d9a82aa

  • SHA512

    34e0edc88f6ef1cc72d1a5a5ef82c30482455cc160293559bccff1c6daba9b02cfbf4bcbdf88a115130e6b886f14b42fef91d86973fd39ba1cf26c706e39c5ce

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIc:aq7tdgI2MyzNORQtOflIwoHNV2XBFV73

Score
10/10

Malware Config

Targets

    • Target

      2024-02-21_b012edab390feae25a3da953310e1457_cryptolocker

    • Size

      49KB

    • MD5

      b012edab390feae25a3da953310e1457

    • SHA1

      f53eb302cbff19687fcd26619a82d13ec6fc9d6d

    • SHA256

      d6a9e1d073caa5cbeadc1d16088f19c1bfa50c938dc326f2580dc59f0d9a82aa

    • SHA512

      34e0edc88f6ef1cc72d1a5a5ef82c30482455cc160293559bccff1c6daba9b02cfbf4bcbdf88a115130e6b886f14b42fef91d86973fd39ba1cf26c706e39c5ce

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIc:aq7tdgI2MyzNORQtOflIwoHNV2XBFV73

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks