Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-06_bc89b605d36186355322948664166b28_cryptolocker

  • Size

    41KB

  • Sample

    240306-g9vhtsdb2w

  • MD5

    bc89b605d36186355322948664166b28

  • SHA1

    e63301dd1f6fc2bf28114a0945701ee28186e001

  • SHA256

    0ad852cdb0cbd60649666ae7d860ab29679f240c31bab446a358871929358b98

  • SHA512

    88c5ea59743003e7ddbb9deb826f24ed3ffdf9707de519adaf2407493e174463345684bcef450a09b3577885a398fb208f5076ecd3e278fa9b85388b0b035296

  • SSDEEP

    768:b/yC4GyNM01GuQMNXw2PSjHPbSuYlW8PAa4/hf:b/pYayGig5HjS3NPAb

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_bc89b605d36186355322948664166b28_cryptolocker

    • Size

      41KB

    • MD5

      bc89b605d36186355322948664166b28

    • SHA1

      e63301dd1f6fc2bf28114a0945701ee28186e001

    • SHA256

      0ad852cdb0cbd60649666ae7d860ab29679f240c31bab446a358871929358b98

    • SHA512

      88c5ea59743003e7ddbb9deb826f24ed3ffdf9707de519adaf2407493e174463345684bcef450a09b3577885a398fb208f5076ecd3e278fa9b85388b0b035296

    • SSDEEP

      768:b/yC4GyNM01GuQMNXw2PSjHPbSuYlW8PAa4/hf:b/pYayGig5HjS3NPAb

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks