Overview

overview

10

Static

static

10

2024-03-12...er.exe

windows7-x64

9

2024-03-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-12_5fa905ddb29418f11a7cde91bf9ac4f2_cryptolocker

  • Size

    55KB

  • Sample

    240312-galfwahf6s

  • MD5

    5fa905ddb29418f11a7cde91bf9ac4f2

  • SHA1

    b563d9bb9a779dd66a4a6359ce6d2dc1e5b402eb

  • SHA256

    464018e83975b679c01ec1e975fac1d4a0f3cc2c31fa042b6527cbc30d39334f

  • SHA512

    10e50c4d3c5c6962df776299060762d846b2e11ea7bb67af88aebe035557d05f695a60d99567e6878b64709fab08478e5b98c200a1e5b857c7fcf2d560c9335b

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTiSfQaV2L0zN/PcMq:X6QFElP6n+gJBMOtEvwDpjBtE1yILOkV

Score
10/10

Malware Config

Targets

    • Target

      2024-03-12_5fa905ddb29418f11a7cde91bf9ac4f2_cryptolocker

    • Size

      55KB

    • MD5

      5fa905ddb29418f11a7cde91bf9ac4f2

    • SHA1

      b563d9bb9a779dd66a4a6359ce6d2dc1e5b402eb

    • SHA256

      464018e83975b679c01ec1e975fac1d4a0f3cc2c31fa042b6527cbc30d39334f

    • SHA512

      10e50c4d3c5c6962df776299060762d846b2e11ea7bb67af88aebe035557d05f695a60d99567e6878b64709fab08478e5b98c200a1e5b857c7fcf2d560c9335b

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTiSfQaV2L0zN/PcMq:X6QFElP6n+gJBMOtEvwDpjBtE1yILOkV

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks