Overview

overview

10

Static

static

10

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-05_fee53a99c683692af1f45d62d6efcd8b_cryptolocker

  • Size

    386KB

  • Sample

    240305-3wtj9seb69

  • MD5

    fee53a99c683692af1f45d62d6efcd8b

  • SHA1

    dc49d056c890d017b9e7954a52c4e25137467636

  • SHA256

    b6ad8bd3c8210137277d20eb52bbc804442cc97d1fbdc7c8ffebe276d36fa6a6

  • SHA512

    59c0ffb4427a96faf1d6eab277c260ada7b114feea17c3a1e0d736a98a453a7a2e4ae73766a283a57f64ba1c12c67abdafb482bddde403e1e5a8668628c352eb

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXQ:nnOflT/ZFIjBz3xjTxynGUOUhXQ

Score
10/10

Malware Config

Targets

    • Target

      2024-03-05_fee53a99c683692af1f45d62d6efcd8b_cryptolocker

    • Size

      386KB

    • MD5

      fee53a99c683692af1f45d62d6efcd8b

    • SHA1

      dc49d056c890d017b9e7954a52c4e25137467636

    • SHA256

      b6ad8bd3c8210137277d20eb52bbc804442cc97d1fbdc7c8ffebe276d36fa6a6

    • SHA512

      59c0ffb4427a96faf1d6eab277c260ada7b114feea17c3a1e0d736a98a453a7a2e4ae73766a283a57f64ba1c12c67abdafb482bddde403e1e5a8668628c352eb

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXQ:nnOflT/ZFIjBz3xjTxynGUOUhXQ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks