Overview

overview

10

Static

static

10

2024-03-09...er.exe

windows7-x64

9

2024-03-09...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-09_69a8d69ef76fa883abd29f91a7a04463_cryptolocker

  • Size

    38KB

  • Sample

    240309-cyhmnsce8v

  • MD5

    69a8d69ef76fa883abd29f91a7a04463

  • SHA1

    a561a198e609e08c5f3ed730200327d680a39649

  • SHA256

    a423a3fa11d5ffced6edaaa02de3b4ae024396bc53a149dbdc6c6fdab3032a79

  • SHA512

    2e256378659ca5d26b3718ff0371f991dcc7944ba65662d15d94494c0b34d344356773e3395785bbd14caf83b868c49c1428682479fa778811e66adefee80438

  • SSDEEP

    384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZnfX0:bgX4zYcgTEu6QOaryfjqDDw3sCu5mX0

Score
10/10

Malware Config

Targets

    • Target

      2024-03-09_69a8d69ef76fa883abd29f91a7a04463_cryptolocker

    • Size

      38KB

    • MD5

      69a8d69ef76fa883abd29f91a7a04463

    • SHA1

      a561a198e609e08c5f3ed730200327d680a39649

    • SHA256

      a423a3fa11d5ffced6edaaa02de3b4ae024396bc53a149dbdc6c6fdab3032a79

    • SHA512

      2e256378659ca5d26b3718ff0371f991dcc7944ba65662d15d94494c0b34d344356773e3395785bbd14caf83b868c49c1428682479fa778811e66adefee80438

    • SSDEEP

      384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZnfX0:bgX4zYcgTEu6QOaryfjqDDw3sCu5mX0

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks