Overview

overview

10

Static

static

10

2024-02-24...er.exe

windows7-x64

9

2024-02-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-24_991ec3a5a58c20f2f7df3bc221f7db25_cryptolocker

  • Size

    61KB

  • Sample

    240224-fmecnahh97

  • MD5

    991ec3a5a58c20f2f7df3bc221f7db25

  • SHA1

    436f34201f7cb8078d64e3dd4b44e6f9ee077e54

  • SHA256

    31eda48d13ffc7afa516787335fc0bf534fc9be1de069de5b3d97b5a8d19aff2

  • SHA512

    3573a1a7e7f84bd88db5649861c25732260dd5a36c9baf9e1bc681bd02d414999643ecc912de067de5e067dc2d5c10afbba0b4d386a52e3abf9ddfc5e660f9b1

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMG:TCjsIOtEvwDpj5HE/OUHnSM1

Score
10/10

Malware Config

Targets

    • Target

      2024-02-24_991ec3a5a58c20f2f7df3bc221f7db25_cryptolocker

    • Size

      61KB

    • MD5

      991ec3a5a58c20f2f7df3bc221f7db25

    • SHA1

      436f34201f7cb8078d64e3dd4b44e6f9ee077e54

    • SHA256

      31eda48d13ffc7afa516787335fc0bf534fc9be1de069de5b3d97b5a8d19aff2

    • SHA512

      3573a1a7e7f84bd88db5649861c25732260dd5a36c9baf9e1bc681bd02d414999643ecc912de067de5e067dc2d5c10afbba0b4d386a52e3abf9ddfc5e660f9b1

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMG:TCjsIOtEvwDpj5HE/OUHnSM1

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks