Overview

overview

10

Static

static

10

2024-03-08...er.exe

windows7-x64

9

2024-03-08...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-08_5f818304e38250487befc4044238bd87_cryptolocker

  • Size

    33KB

  • Sample

    240308-sz8s9aaf64

  • MD5

    5f818304e38250487befc4044238bd87

  • SHA1

    1d65a470f607865d6671b60d1b08a1f2fe5acac7

  • SHA256

    3afc570d84eb630e0105a59faba2db0431405ffae931e62e97b8afa9252fa57f

  • SHA512

    1acc14c9d5c5fac87c7721010bdbde90a19a7e47d486c8a4fdbdd27335d204e78324e68307a0a42844d031a5b026829d08f4aa49f8e39866c3cb7d10725ffdbe

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJXTQke8SEMMRr:bA74zYcgT/Ekd0ryfjQRSNhpSFk

Score
10/10

Malware Config

Targets

    • Target

      2024-03-08_5f818304e38250487befc4044238bd87_cryptolocker

    • Size

      33KB

    • MD5

      5f818304e38250487befc4044238bd87

    • SHA1

      1d65a470f607865d6671b60d1b08a1f2fe5acac7

    • SHA256

      3afc570d84eb630e0105a59faba2db0431405ffae931e62e97b8afa9252fa57f

    • SHA512

      1acc14c9d5c5fac87c7721010bdbde90a19a7e47d486c8a4fdbdd27335d204e78324e68307a0a42844d031a5b026829d08f4aa49f8e39866c3cb7d10725ffdbe

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJXTQke8SEMMRr:bA74zYcgT/Ekd0ryfjQRSNhpSFk

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks