ce12e4989d5132f2e5c10630793d5fcd52434a7223089711de38e50e388a1464 | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-14_8cf163b6c177c80c29dcbddf0fafae40_cryptolocker
Size

60KB
Sample

240314-3qlx8sag9v
MD5

8cf163b6c177c80c29dcbddf0fafae40
SHA1

a4a73edd2e4e5381a9eded396cb4852eb7d5e13f
SHA256

ce12e4989d5132f2e5c10630793d5fcd52434a7223089711de38e50e388a1464
SHA512

1d1e42b855ed7ce7f7051dbda43d961e131af364271afa0d53d54fd33e28744d9d1cf7ec4788382da4fc89b4cda7fd58baa24e4b3ee78f690257fbfb346d055f
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMe:TCjsIOtEvwDpj5HE/OUHnSMV

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-14_8cf163b6c177c80c29dcbddf0fafae40_cryptolocker.exe

Resource

win7-20240220-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-14_8cf163b6c177c80c29dcbddf0fafae40_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-14_8cf163b6c177c80c29dcbddf0fafae40_cryptolocker
- Size
  
  60KB
- MD5
  
  8cf163b6c177c80c29dcbddf0fafae40
- SHA1
  
  a4a73edd2e4e5381a9eded396cb4852eb7d5e13f
- SHA256
  
  ce12e4989d5132f2e5c10630793d5fcd52434a7223089711de38e50e388a1464
- SHA512
  
  1d1e42b855ed7ce7f7051dbda43d961e131af364271afa0d53d54fd33e28744d9d1cf7ec4788382da4fc89b4cda7fd58baa24e4b3ee78f690257fbfb346d055f
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMe:TCjsIOtEvwDpj5HE/OUHnSMV
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy