Overview

overview

10

Static

static

10

2024-02-29...er.exe

windows7-x64

9

2024-02-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-29_492e28c5aec6ab6917e582af38695067_cryptolocker

  • Size

    386KB

  • Sample

    240229-kghv4sbe5z

  • MD5

    492e28c5aec6ab6917e582af38695067

  • SHA1

    f766f85ae009d6ce1e0ce1cf98aedea7d35771ed

  • SHA256

    7d960e4c1dbf221ff692c01f27ca955d75f5b405ef6e937ded10473b6a19698d

  • SHA512

    d45b77fff09dfa157b5774b22b92e370f197baa6128ab27442a4757e74a875e1e939a522625b30579f01afbf5c99951436b9c9c45dbf42d5abf60d266fa131b3

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzX0:nnOflT/ZFIjBz3xjTxynGUOUhX0

Score
10/10

Malware Config

Targets

    • Target

      2024-02-29_492e28c5aec6ab6917e582af38695067_cryptolocker

    • Size

      386KB

    • MD5

      492e28c5aec6ab6917e582af38695067

    • SHA1

      f766f85ae009d6ce1e0ce1cf98aedea7d35771ed

    • SHA256

      7d960e4c1dbf221ff692c01f27ca955d75f5b405ef6e937ded10473b6a19698d

    • SHA512

      d45b77fff09dfa157b5774b22b92e370f197baa6128ab27442a4757e74a875e1e939a522625b30579f01afbf5c99951436b9c9c45dbf42d5abf60d266fa131b3

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzX0:nnOflT/ZFIjBz3xjTxynGUOUhX0

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks