Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-06_fbd09989b625d988c873a8c598debf33_cryptolocker

  • Size

    38KB

  • Sample

    240306-endxvaca27

  • MD5

    fbd09989b625d988c873a8c598debf33

  • SHA1

    ce16c202bef301133beb0b0582ba8534d4fd6e49

  • SHA256

    6d2f4aaa61150976ed272f964538685b586124795164c97bae7eec12f7e11248

  • SHA512

    157433cf03c2ebf7652f402d3e6622f34a0e78cadc5d9eaa6d28158d19edb7001cffe550327c0afd9009b8e36943cdb5433e264fbc681cd1cf0a08540a616d4c

  • SSDEEP

    768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6Dy8wJv:bIDOw9a0Dwo3P1ojvUSDhwB

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_fbd09989b625d988c873a8c598debf33_cryptolocker

    • Size

      38KB

    • MD5

      fbd09989b625d988c873a8c598debf33

    • SHA1

      ce16c202bef301133beb0b0582ba8534d4fd6e49

    • SHA256

      6d2f4aaa61150976ed272f964538685b586124795164c97bae7eec12f7e11248

    • SHA512

      157433cf03c2ebf7652f402d3e6622f34a0e78cadc5d9eaa6d28158d19edb7001cffe550327c0afd9009b8e36943cdb5433e264fbc681cd1cf0a08540a616d4c

    • SSDEEP

      768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6Dy8wJv:bIDOw9a0Dwo3P1ojvUSDhwB

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks