Overview

overview

10

Static

static

10

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-05_d4a26686ae8dab968256223f42dba5fa_cryptolocker

  • Size

    131KB

  • Sample

    240305-p7x5yafc9y

  • MD5

    d4a26686ae8dab968256223f42dba5fa

  • SHA1

    6db03e56008f85c7bb091cd171085f1ed6bbc16f

  • SHA256

    58e160ecf70e2bd28cde564672653d7d0632ab053348107a2dcf6de4f84759d8

  • SHA512

    c028625f45444aeca6276f77c68a69838cc454ef9bcc0c21312ecd23e7b04d338e4324f7409a0a3915e85c28890a6144b56aed1670882c0d59502e8a5fad1ab5

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgp699GNtL1edF1:V6a+pOtEvwDpjtzv

Score
10/10

Malware Config

Targets

    • Target

      2024-03-05_d4a26686ae8dab968256223f42dba5fa_cryptolocker

    • Size

      131KB

    • MD5

      d4a26686ae8dab968256223f42dba5fa

    • SHA1

      6db03e56008f85c7bb091cd171085f1ed6bbc16f

    • SHA256

      58e160ecf70e2bd28cde564672653d7d0632ab053348107a2dcf6de4f84759d8

    • SHA512

      c028625f45444aeca6276f77c68a69838cc454ef9bcc0c21312ecd23e7b04d338e4324f7409a0a3915e85c28890a6144b56aed1670882c0d59502e8a5fad1ab5

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgp699GNtL1edF1:V6a+pOtEvwDpjtzv

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks