Overview

overview

10

Static

static

10

2024-03-12...er.exe

windows7-x64

9

2024-03-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-12_d678700408cdec202bd42d137aa1a3ac_cryptolocker

  • Size

    49KB

  • Sample

    240312-cew1ysch3v

  • MD5

    d678700408cdec202bd42d137aa1a3ac

  • SHA1

    4c4abe0f6262df084b4deef815ac8f672eab92a4

  • SHA256

    7c1dba72c529d62a2d389a10dbe4fa0161df576cc7b134683ce6b4777a0795de

  • SHA512

    aeca5fa3bb2893aed9b2be59ae7ab8a6a8b315583d3d227392dc0e86569ab7c6ff583a78a2839ed497ce2e2e23395c3c96ab38f3ad7b9e34107a767f82b6a57a

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5aFr7YOzzOQjCvo4:V6QFElP6n+gMQMOtEvwDpjyaYaFAeB4

Score
10/10

Malware Config

Targets

    • Target

      2024-03-12_d678700408cdec202bd42d137aa1a3ac_cryptolocker

    • Size

      49KB

    • MD5

      d678700408cdec202bd42d137aa1a3ac

    • SHA1

      4c4abe0f6262df084b4deef815ac8f672eab92a4

    • SHA256

      7c1dba72c529d62a2d389a10dbe4fa0161df576cc7b134683ce6b4777a0795de

    • SHA512

      aeca5fa3bb2893aed9b2be59ae7ab8a6a8b315583d3d227392dc0e86569ab7c6ff583a78a2839ed497ce2e2e23395c3c96ab38f3ad7b9e34107a767f82b6a57a

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5aFr7YOzzOQjCvo4:V6QFElP6n+gMQMOtEvwDpjyaYaFAeB4

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks