Overview

overview

10

Static

static

10

2024-02-21...er.exe

windows7-x64

9

2024-02-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-21_e6685b27255eb8cdff8074e80b16279d_cryptolocker

  • Size

    39KB

  • Sample

    240221-vq38hscc99

  • MD5

    e6685b27255eb8cdff8074e80b16279d

  • SHA1

    f7c9ebed077440ea69a4b19f2bb8332b6945e5fe

  • SHA256

    a603e92a9b1a430748c2dd31c72d0827b607837f85af18273cfae2be6ecd8a72

  • SHA512

    0042ca93b6e95a02014973528fe3421737f7bd07178600515d133e451ea4972ccb67381daad3a4433592c16d93b9bff1d2c553897931ae4310fadcc7675d70cf

  • SSDEEP

    768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenQLLn:ZzFbxmLPWQMOtEvwDpjLeUr

Score
10/10

Malware Config

Targets

    • Target

      2024-02-21_e6685b27255eb8cdff8074e80b16279d_cryptolocker

    • Size

      39KB

    • MD5

      e6685b27255eb8cdff8074e80b16279d

    • SHA1

      f7c9ebed077440ea69a4b19f2bb8332b6945e5fe

    • SHA256

      a603e92a9b1a430748c2dd31c72d0827b607837f85af18273cfae2be6ecd8a72

    • SHA512

      0042ca93b6e95a02014973528fe3421737f7bd07178600515d133e451ea4972ccb67381daad3a4433592c16d93b9bff1d2c553897931ae4310fadcc7675d70cf

    • SSDEEP

      768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenQLLn:ZzFbxmLPWQMOtEvwDpjLeUr

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks