40bdc7b88c64758cea6a0c1b2b00d24d95acb259f64e0c3ca3c525d82def063d | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-12...er.exe

windows7-x64

9

2024-03-12...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-12_7ceb21fde37950624a2d281ef1066945_cryptolocker
Size

33KB
Sample

240312-1d7casdc22
MD5

7ceb21fde37950624a2d281ef1066945
SHA1

8fb85a9885f787e4cbe2e49b04a0d7181e86a8a4
SHA256

40bdc7b88c64758cea6a0c1b2b00d24d95acb259f64e0c3ca3c525d82def063d
SHA512

ed8ba115523afeb9bca0f1bf02313c6e39cd9072f8df4da2cfa5722097f610a51828082d77f0c96a88ac5614a47af28b5673d007118f6e47a95b62a17157049c
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunexRlz5Kg1Gwx5W:bA74zYcgT/Ekd0ryfjPIunYHK2W

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-03-12_7ceb21fde37950624a2d281ef1066945_cryptolocker.exe

Resource

win7-20231129-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-12_7ceb21fde37950624a2d281ef1066945_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-12_7ceb21fde37950624a2d281ef1066945_cryptolocker
- Size
  
  33KB
- MD5
  
  7ceb21fde37950624a2d281ef1066945
- SHA1
  
  8fb85a9885f787e4cbe2e49b04a0d7181e86a8a4
- SHA256
  
  40bdc7b88c64758cea6a0c1b2b00d24d95acb259f64e0c3ca3c525d82def063d
- SHA512
  
  ed8ba115523afeb9bca0f1bf02313c6e39cd9072f8df4da2cfa5722097f610a51828082d77f0c96a88ac5614a47af28b5673d007118f6e47a95b62a17157049c
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunexRlz5Kg1Gwx5W:bA74zYcgT/Ekd0ryfjPIunYHK2W
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy