Overview

overview

10

Static

static

10

2024-02-23...er.exe

windows7-x64

9

2024-02-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-23_a149418ee29df4dde05b41d2222699bc_cryptolocker

  • Size

    39KB

  • Sample

    240223-p3vh9agf63

  • MD5

    a149418ee29df4dde05b41d2222699bc

  • SHA1

    5b6b4a2744336b64285beae1723710a429a2dcef

  • SHA256

    228e913b3a21f68b1649e71d6e947b4596db6bd7d3dacdc224c0dfb087fe6892

  • SHA512

    c2d2b675aaa05947c37d4128dcdea6019822143e04da3b79005bb56cdd900472c05ee99a06952226154c31f81529fa45e71072c585b34fc5da31ed7a76083b55

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznHzl6AJvDSuYlxujsFw5:b/yC4GyNM01GuQMNXw2PSjHPbSuYlaJ5

Score
10/10
discovery

Malware Config

Targets

    • Target

      2024-02-23_a149418ee29df4dde05b41d2222699bc_cryptolocker

    • Size

      39KB

    • MD5

      a149418ee29df4dde05b41d2222699bc

    • SHA1

      5b6b4a2744336b64285beae1723710a429a2dcef

    • SHA256

      228e913b3a21f68b1649e71d6e947b4596db6bd7d3dacdc224c0dfb087fe6892

    • SHA512

      c2d2b675aaa05947c37d4128dcdea6019822143e04da3b79005bb56cdd900472c05ee99a06952226154c31f81529fa45e71072c585b34fc5da31ed7a76083b55

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznHzl6AJvDSuYlxujsFw5:b/yC4GyNM01GuQMNXw2PSjHPbSuYlaJ5

    Score
    9/10
    discovery

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks