Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-06_0e127ed6184a1e662309d4834f1a4605_cryptolocker

  • Size

    163KB

  • Sample

    240306-bvc3cagc76

  • MD5

    0e127ed6184a1e662309d4834f1a4605

  • SHA1

    e3d454046fb1d4fcb571d62aacfaa100160d1481

  • SHA256

    01951c9d8d2ad3c6c962593daf3b619f7963af3db39d29c19ab573f67a90af9b

  • SHA512

    3beb3e73fec510278df56d5af2c356655e621e03d9399b191c9b6eb3159cb5db17d6ac92c63f4c3e19c12ca253a5e38bfd043d870ae26217eb67cd5becbb04bd

  • SSDEEP

    1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwNgp699GNtL1emw:u6a++OtEvwDpj6zp

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_0e127ed6184a1e662309d4834f1a4605_cryptolocker

    • Size

      163KB

    • MD5

      0e127ed6184a1e662309d4834f1a4605

    • SHA1

      e3d454046fb1d4fcb571d62aacfaa100160d1481

    • SHA256

      01951c9d8d2ad3c6c962593daf3b619f7963af3db39d29c19ab573f67a90af9b

    • SHA512

      3beb3e73fec510278df56d5af2c356655e621e03d9399b191c9b6eb3159cb5db17d6ac92c63f4c3e19c12ca253a5e38bfd043d870ae26217eb67cd5becbb04bd

    • SSDEEP

      1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwNgp699GNtL1emw:u6a++OtEvwDpj6zp

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks