Overview

overview

10

Static

static

10

2024-02-29...er.exe

windows7-x64

9

2024-02-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-29_bbd60ff1924f1835638ed98e919e2317_cryptolocker

  • Size

    59KB

  • Sample

    240229-kqjtrscb29

  • MD5

    bbd60ff1924f1835638ed98e919e2317

  • SHA1

    0561a2208273c46de94d0212e8197642cbe42527

  • SHA256

    1e54d12430dadc8f1623545cbd7d7d184552a18f7a2b0983af60b62a92c052fb

  • SHA512

    b15ddfea556c114d61167e225cf6c3a155136a80bcf2d09e38c07ed41e195fe8f8714c4fc0068a57f07914672be06ed29073a9167cb9484d92cabcbe0033c7cf

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPt547/qGAt:V6QFElP6n+gMQMOtEvwDpjyaLccVCbtA

Score
10/10

Malware Config

Targets

    • Target

      2024-02-29_bbd60ff1924f1835638ed98e919e2317_cryptolocker

    • Size

      59KB

    • MD5

      bbd60ff1924f1835638ed98e919e2317

    • SHA1

      0561a2208273c46de94d0212e8197642cbe42527

    • SHA256

      1e54d12430dadc8f1623545cbd7d7d184552a18f7a2b0983af60b62a92c052fb

    • SHA512

      b15ddfea556c114d61167e225cf6c3a155136a80bcf2d09e38c07ed41e195fe8f8714c4fc0068a57f07914672be06ed29073a9167cb9484d92cabcbe0033c7cf

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPt547/qGAt:V6QFElP6n+gMQMOtEvwDpjyaLccVCbtA

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks