a0ebc208f7966e69e0258da3761cbe0ae7b4d1ed0887e96760d43dc7873978e9 | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-09...er.exe

windows7-x64

9

2024-03-09...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-09_29fef9b50d2eff13d5c55345cd04fe08_cryptolocker
Size

42KB
Sample

240309-e32mfscg26
MD5

29fef9b50d2eff13d5c55345cd04fe08
SHA1

35182058eb70d97bf440c929cdc7a715872c2541
SHA256

a0ebc208f7966e69e0258da3761cbe0ae7b4d1ed0887e96760d43dc7873978e9
SHA512

ccca76350e0b9ea4150b38ed2c4d4beab1ec33309bb4d321bda839a8240454dbd51506b8338452ba5a09a8e99eb976eac9e71863bd67eb97d9d3468f93c114ec
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyO:btB9g/WItCSsAGjX7e9N0hunrknlN

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-03-09_29fef9b50d2eff13d5c55345cd04fe08_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-09_29fef9b50d2eff13d5c55345cd04fe08_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-09_29fef9b50d2eff13d5c55345cd04fe08_cryptolocker
- Size
  
  42KB
- MD5
  
  29fef9b50d2eff13d5c55345cd04fe08
- SHA1
  
  35182058eb70d97bf440c929cdc7a715872c2541
- SHA256
  
  a0ebc208f7966e69e0258da3761cbe0ae7b4d1ed0887e96760d43dc7873978e9
- SHA512
  
  ccca76350e0b9ea4150b38ed2c4d4beab1ec33309bb4d321bda839a8240454dbd51506b8338452ba5a09a8e99eb976eac9e71863bd67eb97d9d3468f93c114ec
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyO:btB9g/WItCSsAGjX7e9N0hunrknlN
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy