Overview

overview

10

Static

static

10

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-05_e49573676c577a04c655cf2334312a79_cryptolocker

  • Size

    49KB

  • Sample

    240305-r77eqahc8y

  • MD5

    e49573676c577a04c655cf2334312a79

  • SHA1

    87553201972718a4281bf069030b10c36c4150aa

  • SHA256

    52b750189e0c5404129b962e89bceb5ffee06082a70cb6012b2eb738f88ac4b2

  • SHA512

    1542b631579eaf2980a98ac29c13af3cb6fbc8a59eec2a3705513ce2d9b3977e63ab950ae55ca982bec62218afbb4d282e253f74068b9aee435535a5923200aa

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTNVa:79mqyNhQMOtEvwDpjBxe81

Score
10/10

Malware Config

Targets

    • Target

      2024-03-05_e49573676c577a04c655cf2334312a79_cryptolocker

    • Size

      49KB

    • MD5

      e49573676c577a04c655cf2334312a79

    • SHA1

      87553201972718a4281bf069030b10c36c4150aa

    • SHA256

      52b750189e0c5404129b962e89bceb5ffee06082a70cb6012b2eb738f88ac4b2

    • SHA512

      1542b631579eaf2980a98ac29c13af3cb6fbc8a59eec2a3705513ce2d9b3977e63ab950ae55ca982bec62218afbb4d282e253f74068b9aee435535a5923200aa

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTNVa:79mqyNhQMOtEvwDpjBxe81

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks