Overview

overview

10

Static

static

10

2024-02-25...er.exe

windows7-x64

9

2024-02-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-25_6244e703aa1e9b09abc18fa86674b612_cryptolocker

  • Size

    33KB

  • Sample

    240225-t3srwafh68

  • MD5

    6244e703aa1e9b09abc18fa86674b612

  • SHA1

    d3ec1676e3f15964203f26a834bf31a0191e77b6

  • SHA256

    3f892877122bd9176f01d4f46e24279df512b9c8ed1e757e35ecf5d6bacbab0d

  • SHA512

    80737f0c373bb6ba7048739b6818c2687aa7a77a9ffb49ffe45275ba1acc8ff5e3bdd8ea9f69c535f3d431237d2a36eb40a5ba255d8a4317c7c8d34033dfa6a4

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3q4p/Qcf:b7o/2n1TCraU6GD1a4Xt9bRU64BTf

Score
10/10

Malware Config

Targets

    • Target

      2024-02-25_6244e703aa1e9b09abc18fa86674b612_cryptolocker

    • Size

      33KB

    • MD5

      6244e703aa1e9b09abc18fa86674b612

    • SHA1

      d3ec1676e3f15964203f26a834bf31a0191e77b6

    • SHA256

      3f892877122bd9176f01d4f46e24279df512b9c8ed1e757e35ecf5d6bacbab0d

    • SHA512

      80737f0c373bb6ba7048739b6818c2687aa7a77a9ffb49ffe45275ba1acc8ff5e3bdd8ea9f69c535f3d431237d2a36eb40a5ba255d8a4317c7c8d34033dfa6a4

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3q4p/Qcf:b7o/2n1TCraU6GD1a4Xt9bRU64BTf

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks