Overview

overview

10

Static

static

10

2024-02-22...er.exe

windows7-x64

9

2024-02-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-22_18f3340089ed2ece558e463e7487d63e_cryptolocker

  • Size

    58KB

  • Sample

    240222-x5x16aeb6w

  • MD5

    18f3340089ed2ece558e463e7487d63e

  • SHA1

    0fa2ad6b074012da7c00b291146545876ca5033c

  • SHA256

    4d0f14d7581422aae4d9c83ac1c6f74ad06910716b496487e18de3632bff2242

  • SHA512

    648808b452354ff19c0dec0fe1124df9ce574bcac2030abe379b9c0e2e97e1d343552205ce2da838e42435926fc7d2aa3064fc5e9a3251350e8b856243cb1613

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPt547/qGA:V6QFElP6n+gMQMOtEvwDpjyaLccVCbtA

Score
10/10

Malware Config

Targets

    • Target

      2024-02-22_18f3340089ed2ece558e463e7487d63e_cryptolocker

    • Size

      58KB

    • MD5

      18f3340089ed2ece558e463e7487d63e

    • SHA1

      0fa2ad6b074012da7c00b291146545876ca5033c

    • SHA256

      4d0f14d7581422aae4d9c83ac1c6f74ad06910716b496487e18de3632bff2242

    • SHA512

      648808b452354ff19c0dec0fe1124df9ce574bcac2030abe379b9c0e2e97e1d343552205ce2da838e42435926fc7d2aa3064fc5e9a3251350e8b856243cb1613

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPt547/qGA:V6QFElP6n+gMQMOtEvwDpjyaLccVCbtA

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks