Overview

overview

10

Static

static

10

f6286a5904...fb.exe

windows7-x64

9

f6286a5904...fb.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f6286a5904a40384b4cd6c2b119aa8bb1ac3b26c86937cdc639967d714e734fb

  • Size

    53KB

  • Sample

    240306-c9s8jsae65

  • MD5

    a7ab51f8f01c68f99c9e3839eb2e5774

  • SHA1

    620a25e26de0ac708321924c40468d5941111f95

  • SHA256

    f6286a5904a40384b4cd6c2b119aa8bb1ac3b26c86937cdc639967d714e734fb

  • SHA512

    58a72427d135ae9e53d72d38275d8c73be9713384d7241d3f723d0bf975b188d060db488f883e70ed1c6c8472a1cd77008bf83472d400dd03386dd372bcf5a3a

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdO5Yp:ZVxkGOtEvwDpjcY

Score
10/10

Malware Config

Targets

    • Target

      f6286a5904a40384b4cd6c2b119aa8bb1ac3b26c86937cdc639967d714e734fb

    • Size

      53KB

    • MD5

      a7ab51f8f01c68f99c9e3839eb2e5774

    • SHA1

      620a25e26de0ac708321924c40468d5941111f95

    • SHA256

      f6286a5904a40384b4cd6c2b119aa8bb1ac3b26c86937cdc639967d714e734fb

    • SHA512

      58a72427d135ae9e53d72d38275d8c73be9713384d7241d3f723d0bf975b188d060db488f883e70ed1c6c8472a1cd77008bf83472d400dd03386dd372bcf5a3a

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdO5Yp:ZVxkGOtEvwDpjcY

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks