Overview

overview

10

Static

static

10

2024-02-28...er.exe

windows7-x64

9

2024-02-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-28_bfbc36d94a99a96cef476954984055c9_cryptolocker

  • Size

    386KB

  • Sample

    240228-f6kc1scc97

  • MD5

    bfbc36d94a99a96cef476954984055c9

  • SHA1

    81d995e34360e31eb234e0ea7be1efdc8c839c79

  • SHA256

    b7c8650bc3f5fbcbe7b1ceb4b3885b69a22aebe89f8bf266e7c362e720dc8182

  • SHA512

    d2001cbaae289cfbb4f2393ef5f40d162dbd85911ca64f6c1b877e4ae769049513b86b7fff6953eb195bf6221eb68253b9bb1b2a479a66112f4220eed0b2d485

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXE:nnOflT/ZFIjBz3xjTxynGUOUhXE

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_bfbc36d94a99a96cef476954984055c9_cryptolocker

    • Size

      386KB

    • MD5

      bfbc36d94a99a96cef476954984055c9

    • SHA1

      81d995e34360e31eb234e0ea7be1efdc8c839c79

    • SHA256

      b7c8650bc3f5fbcbe7b1ceb4b3885b69a22aebe89f8bf266e7c362e720dc8182

    • SHA512

      d2001cbaae289cfbb4f2393ef5f40d162dbd85911ca64f6c1b877e4ae769049513b86b7fff6953eb195bf6221eb68253b9bb1b2a479a66112f4220eed0b2d485

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXE:nnOflT/ZFIjBz3xjTxynGUOUhXE

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks