Overview

overview

10

Static

static

10

2024-02-28...er.exe

windows7-x64

9

2024-02-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-28_de823aed017ad0bfcc0554b86afd949c_cryptolocker

  • Size

    35KB

  • Sample

    240228-tlcz4afg64

  • MD5

    de823aed017ad0bfcc0554b86afd949c

  • SHA1

    b4caa9c62c176758382a322e865ae74d7a18200b

  • SHA256

    0595848b05ee6e8f54d080bc3beabd988b12693ae7254d567788e7b58f54b6a4

  • SHA512

    dd4f41a575258b445e794cc937b3375165b3659cf5c64b8a4a5bb11ba2ea1fcc91ea832737c92543ea841cc3f515b47783cfec34797788626971f275f78208fc

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7JEkA:bxNrC7kYo1Fxf3s06L

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_de823aed017ad0bfcc0554b86afd949c_cryptolocker

    • Size

      35KB

    • MD5

      de823aed017ad0bfcc0554b86afd949c

    • SHA1

      b4caa9c62c176758382a322e865ae74d7a18200b

    • SHA256

      0595848b05ee6e8f54d080bc3beabd988b12693ae7254d567788e7b58f54b6a4

    • SHA512

      dd4f41a575258b445e794cc937b3375165b3659cf5c64b8a4a5bb11ba2ea1fcc91ea832737c92543ea841cc3f515b47783cfec34797788626971f275f78208fc

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7JEkA:bxNrC7kYo1Fxf3s06L

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks