Overview

overview

10

Static

static

10

2024-02-24...er.exe

windows7-x64

9

2024-02-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-24_f1efbdb70970fb9347f95251410a8b16_cryptolocker

  • Size

    127KB

  • Sample

    240224-q5l6bsde72

  • MD5

    f1efbdb70970fb9347f95251410a8b16

  • SHA1

    4443e553922f27a42f88b1cf73f46335bb093ac9

  • SHA256

    ab9384d531d58d2a1960400b4b92990967f9b3cb9c1f0e622c0203e02fa05403

  • SHA512

    573529eb3fa457adf95721a408638ca38e34c4ca49aa5664717470aa0ad1be222140e2158b7c52a3aff55334d56edd0a8a391817302baf6072e217b0c92c4059

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//iru:vCjsIOtEvwDpj5H9YvQd2R3

Score
10/10

Malware Config

Targets

    • Target

      2024-02-24_f1efbdb70970fb9347f95251410a8b16_cryptolocker

    • Size

      127KB

    • MD5

      f1efbdb70970fb9347f95251410a8b16

    • SHA1

      4443e553922f27a42f88b1cf73f46335bb093ac9

    • SHA256

      ab9384d531d58d2a1960400b4b92990967f9b3cb9c1f0e622c0203e02fa05403

    • SHA512

      573529eb3fa457adf95721a408638ca38e34c4ca49aa5664717470aa0ad1be222140e2158b7c52a3aff55334d56edd0a8a391817302baf6072e217b0c92c4059

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//iru:vCjsIOtEvwDpj5H9YvQd2R3

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks