Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-06_ac514af5a97d1bcccb7eff7d9634ab8d_cryptolocker

  • Size

    81KB

  • Sample

    240306-efav8abg29

  • MD5

    ac514af5a97d1bcccb7eff7d9634ab8d

  • SHA1

    8c902d38cc0c7f853adf835f2fd8c0916c479fbb

  • SHA256

    36a2b5acae29675548d689a20902c4c2e5d10d82c8a6d2cd963f660c7a0d56cf

  • SHA512

    5394701d2a0fd5527fffea4fa83a5523688ad20c095abf9ca0f1bc0c80f2c8bd263d00bb001bbf44f0fc665ae2679c50dfecb3a7f915d36813e9d921c74cb753

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMa:TCjsIOtEvwDpj5HE/OUHnSMw

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_ac514af5a97d1bcccb7eff7d9634ab8d_cryptolocker

    • Size

      81KB

    • MD5

      ac514af5a97d1bcccb7eff7d9634ab8d

    • SHA1

      8c902d38cc0c7f853adf835f2fd8c0916c479fbb

    • SHA256

      36a2b5acae29675548d689a20902c4c2e5d10d82c8a6d2cd963f660c7a0d56cf

    • SHA512

      5394701d2a0fd5527fffea4fa83a5523688ad20c095abf9ca0f1bc0c80f2c8bd263d00bb001bbf44f0fc665ae2679c50dfecb3a7f915d36813e9d921c74cb753

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMa:TCjsIOtEvwDpj5HE/OUHnSMw

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks