Overview

overview

10

Static

static

10

2024-02-28...er.exe

windows7-x64

9

2024-02-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-28_316cf39dbf97544c0841272ee3568545_cryptolocker

  • Size

    49KB

  • Sample

    240228-zahdbsdb74

  • MD5

    316cf39dbf97544c0841272ee3568545

  • SHA1

    a0bfd2d74bbd0f243ac6cd3af267e3c4e92748c6

  • SHA256

    213051b26c7d87f5d97cc3d50dbcff30cf2445de5f6e32b8889ed128326cce9d

  • SHA512

    ecc47ec9ea0c4c85351cc9c50ad1575fcd13f13f1058fb4de0ed407cf8c8c19c9ccd65bc8171c2212ad7ad1615edc7be286cf269f3a5870b1d70d24f32a4235c

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKI94Y:79mqyNhQMOtEvwDpjBxe8TpX99

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_316cf39dbf97544c0841272ee3568545_cryptolocker

    • Size

      49KB

    • MD5

      316cf39dbf97544c0841272ee3568545

    • SHA1

      a0bfd2d74bbd0f243ac6cd3af267e3c4e92748c6

    • SHA256

      213051b26c7d87f5d97cc3d50dbcff30cf2445de5f6e32b8889ed128326cce9d

    • SHA512

      ecc47ec9ea0c4c85351cc9c50ad1575fcd13f13f1058fb4de0ed407cf8c8c19c9ccd65bc8171c2212ad7ad1615edc7be286cf269f3a5870b1d70d24f32a4235c

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKI94Y:79mqyNhQMOtEvwDpjBxe8TpX99

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks