Overview

overview

10

Static

static

10

2024-02-27...er.exe

windows7-x64

9

2024-02-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-27_658f8d8041eade3274e243ef4ec6d382_cryptolocker

  • Size

    31KB

  • Sample

    240227-w9bhaagf6z

  • MD5

    658f8d8041eade3274e243ef4ec6d382

  • SHA1

    2ecd719e20c2ff0d1b9a639975571c303c989297

  • SHA256

    f2ea060be826a55cf54d85f7ec7b75dcf53502bae32dec4f189ac350029a8989

  • SHA512

    2f1fc253d5dd0f4635a3627b79aa2d0ccf541eb9e1075ae839c6bcdc0f266182ca399e19305440c279f4a03b0065e025774975715bc9fe68bd778d347af556c1

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ/Tl+bltoGk65P:bA74zYcgT/Ekd0ryfjQRSlwltYY

Score
10/10

Malware Config

Targets

    • Target

      2024-02-27_658f8d8041eade3274e243ef4ec6d382_cryptolocker

    • Size

      31KB

    • MD5

      658f8d8041eade3274e243ef4ec6d382

    • SHA1

      2ecd719e20c2ff0d1b9a639975571c303c989297

    • SHA256

      f2ea060be826a55cf54d85f7ec7b75dcf53502bae32dec4f189ac350029a8989

    • SHA512

      2f1fc253d5dd0f4635a3627b79aa2d0ccf541eb9e1075ae839c6bcdc0f266182ca399e19305440c279f4a03b0065e025774975715bc9fe68bd778d347af556c1

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ/Tl+bltoGk65P:bA74zYcgT/Ekd0ryfjQRSlwltYY

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks