Overview

overview

10

Static

static

10

2024-02-28...er.exe

windows7-x64

9

2024-02-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-28_bfdc0e1a4cb8f39e6995bf478fa4fd4c_cryptolocker

  • Size

    40KB

  • Sample

    240228-zmmtksdf55

  • MD5

    bfdc0e1a4cb8f39e6995bf478fa4fd4c

  • SHA1

    b517e41727799225730d19b8883e093985f5abdb

  • SHA256

    86f8ce981a312cefad05899b5e11c3fca6d71748d9a4d3d3a0929292acbce4b1

  • SHA512

    63e1fd4c2ffbb8b1aaf41c3f3f44844efc4eb05b0a3a4a5c3b91ef1937ed5155aeed25042e52c9c8be778ecc0b0c8941020b374e0232b1579dcb74f05247a355

  • SSDEEP

    768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/cTo:ZzFbxmLPWQMOtEvwDpj38lD/cTo

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_bfdc0e1a4cb8f39e6995bf478fa4fd4c_cryptolocker

    • Size

      40KB

    • MD5

      bfdc0e1a4cb8f39e6995bf478fa4fd4c

    • SHA1

      b517e41727799225730d19b8883e093985f5abdb

    • SHA256

      86f8ce981a312cefad05899b5e11c3fca6d71748d9a4d3d3a0929292acbce4b1

    • SHA512

      63e1fd4c2ffbb8b1aaf41c3f3f44844efc4eb05b0a3a4a5c3b91ef1937ed5155aeed25042e52c9c8be778ecc0b0c8941020b374e0232b1579dcb74f05247a355

    • SSDEEP

      768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/cTo:ZzFbxmLPWQMOtEvwDpj38lD/cTo

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks